Page 15 - AccumeView June
P. 15
Data Breach
New Cybersecurity Report Warns CIOs — ‘If You’re Breached Or Hacked, It’s Your Own Fault’ - A new 1E
and Vanson Bourne survey conducted among IT and cybersecurity executives in the US and the UK
highlights the continued failure of many companies to combat cyber threats, despite increasing security
awareness and investments. The report shows that six out of ten organizations experienced a breach in
the past two years, while almost one-third (31%) were hit multiple times. 1E CEO Sumir Karayi believes
that often CIO and CISOs are to blame for hacks and breaches because “the vast majority of successful
attacks today are using known vulnerabilities in well-known software that have been patched already by
software vendors,” and stopping those attacks is a simple matter of patching vulnerable systems.
However, 93% of companies struggle to keep endpoints secured due to budget limitations, problematic
working relationships between IT and infosec departments, and the presence of legacy systems.
Source: https://www.oodaloop.com/briefs/2019/05/02/new-cybersecurity-report-warns-cios-if-
youre-breached-or-hacked-its-your-own-fault/
Hackers are collecting payment details, user passwords from 4,600 sites - Hackers have breached
analytics service Picreel and open-source project Alpaca Forms and have modified JavaScript files on the
infrastructure of these two companies to embed malicious code on over 4,600 websites, security
researchers have told ZDNet. The attack is ongoing, and the malicious scripts are still live, at the time of
this article's publishing. The malicious code logs all content users enter inside form fields and sends the
information to a server located in Panama. This includes data that users enter on checkout/payment
pages, contact forms, and login sections.
Source: https://www.zdnet.com/article/hackers-are-collecting-payment-details-user-passwords-
from-4600-sites/
The largest breaches over the past three years have caused massive and irreparable damage - Publicly
traded companies suffering the worst data breaches averaged a 7.5 percent decrease in stock price, a
Bitglass report reveals. Bitglass researched the three largest data breaches of publicly traded companies
from each of the last three years in order to uncover cybersecurity trends and demonstrate the extensive
damage that can be done by improper security. Among the incidents detailed in the Kings of the Monster
Breaches report are the Marriott breach of 2018, the Equifax breach of 2017 and the Yahoo! breach of
2016.
Key findings:
• The mean number of individuals directly affected by each breach was 257 million.
• To date, these breaches have cost their companies an average of $347 million in legal fees,
penalties, remediation costs and other expenses.
• The average post-breach market cap decrease was $742 million (this excludes the outlier
Facebook breach which lost $43 billion in market cap).
• It took an average of 46 days for the companies’ stock prices to return to their pre-breach
levels – Equifax’s stock price still has yet to recover.
Source: https://www.helpnetsecurity.com/2019/05/17/data-breaches-irreparable-damage/
www.accumepartners.com
15