Marina Lekova’s Post

An update from Advisen-Zywave: The # of publicly reported data breaches has doubled in Q1 of 2024. That's up 90% YOY. The stats show that the number of affected individuals has dropped, but here's another historical statistic: "The first quarter of the year historically features the lowest number of data compromises, according to ITRC, suggesting breach stats will only rise through the year". (according to ITRC) If your company has invested in preparing and defending itself against threats against your network, your people from falling victim to attacks on their human nature and overall, hardened your defenses, it still may not be enough. Talk to your insurance professional and learn about how Privacy & Network Security Insurance is not just a policy that pays when you file a claim, it is a tool that you can use to find peace of mind and focus on what is important to your company. #amwins #cyberliability #cybersecurity ADVISEN Zywave Amwins

🚨 **Major Data Leak Alert** 🚨 A recent data breach involving background check company US-MC2 has exposed sensitive personal information of millions of Americans. The leaked data includes full names, Social Security numbers, dates of birth, and much more, putting those affected at serious risk of identity theft. **Pro Tip:** If you haven’t already, **freeze your credit immediately**. This is one of the most effective ways to protect yourself from potential identity theft in the wake of data breaches like this one. Stay vigilant and secure your information! 🔒 #cybersecurity #databreach #identitytheft #protectyourself #creditfreeze #security

Recently, a significant data breach has raised alarms across the United States, potentially compromising Social Security numbers and other personal information of nearly every American. This breach, connected to National Public Data—a background check company—reportedly exposed up to 2.9 billion records, including sensitive data like Social Security numbers, addresses, and family information. The breach has already sparked multiple class-action lawsuits, with allegations pointing to a cybercriminal group named "USDoD" as being behind the attack, which is believed to have occurred around April and summer 2024. The stolen data has reportedly been made available for sale on the dark web, increasing the risk of widespread identity theft and financial fraud. The breach was first brought to public attention in June 2024, and since then, it has been under intense scrutiny. National Public Data has confirmed the breach and is currently working with law enforcement to investigate the incident and notify those affected. However, the Social Security Administration has assured that their internal systems were not compromised in this breach. Given the scale and sensitivity of the compromised information, cybersecurity experts strongly recommend taking protective measures. These include freezing your credit with major credit bureaus to prevent unauthorized access to your information. This breach underscores the ongoing vulnerabilities in data security and the crucial need for robust cybersecurity measures to protect our sensitive personal information #DataBreach #Cybersecurity #DataProtection #InformationSecurity #Privacy #IdentityTheft #CyberAttack #RiskManagement #DataPrivacy #SecurityAwareness #TechNews #IncidentResponse #Compliance

What is sensitive data? 🤔 Information such as social security numbers, bank details, health records, and secret business technology are considered sensitive - and need careful handling to prevent harm 👀 Keeping such data safe is key to avoiding identity theft, financial loss, and preserving privacy. Learn how to protect sensitive data and prevent security breaches with our guide 👉 https://lnkd.in/dwQEyjQk #dataprotection #data #sensitivedata #cybersecurity #businessecurity

𝐘𝐨𝐮𝐫 𝐋𝐚𝐭𝐞𝐬𝐭 𝐖𝐚𝐤𝐞-𝐔𝐩 𝐂𝐚𝐥𝐥! 800,00 𝐏𝐞𝐫𝐬𝐨𝐧𝐚𝐥 𝐑𝐞𝐜𝐨𝐫𝐝𝐬 𝐄𝐱𝐩𝐨𝐬𝐞𝐝! Safeguarding personal data has become a constant struggle. Once again, cybercriminals have exposed another vulnerability and caused another data breach affecting over 800,000 individuals. Landmark Admin, a company providing back-office services for insurers, fell victim to a cyberattack earlier this year, exposing sensitive information such as Social Security numbers, addresses, and even medical data. The implications? If your insurance provider partners with Landmark Admin, your data might be compromised. Watch out for notification letters to understand the extent of the breach and actions you can take. But what measures should you adopt now? Here are key steps to mitigate risks: 1. Review your notification letter for specific details. 2. Consider utilizing free identity theft protection services offered by Landmark Admin. 3. Regularly monitor your financial and online accounts for unusual activity. 4. Use online data leak checkers like "Have I Been Pwned" to stay informed. Data breaches are alarmingly common, but proactive measures can help safeguard your digital identity. Stay vigilant and informed! Are you up-to-date with the security measures for your data? Share your thoughts and experiences below. If you want to talk to one of our Cyber Experts and see where you can improve your cybersecurity posture, give us a call at (713) 574-9955 or leave a message below. #Veloci #vCISO #DataSecurity #CyberRisk #IdentityProtection #DataBreach #CyberAwareness #PrivacyProtection

Massive Data Breach Exposes Personal Information of Billions A data breach at National Public Data, a relatively obscure but widely connected company, has exposed 272 million Social Security numbers. This breach, reminiscent of the 2017 Equifax breach but on an even larger scale, has sent shockwaves through the #cybersecurity and #compliance sectors. Hackers infiltrated National Public Data’s systems, gaining access to a vast database containing highly sensitive information. This includes names, addresses, phone numbers, and, most alarmingly, Social Security numbers—data that’s now circulating on forums frequented by cybercriminals. A sister company, RecordsCheck, inadvertently published usernames and passwords to its back-end database on a publicly accessible webpage. This breach not only compromised sensitive consumer data but also exposed the lax security practices across related entities within the NPD network. The exposed archive, discovered by KrebsonSecurity, included source code and plain text passwords for various components of the RecordsCheck website, some of which were identical to those used by NPD. For those involved in sensitive government roles or with security clearances, this breach feels deeply personal. The exposure of such detailed personal data underscores a critical failure in protecting sensitive information. National Public Data has announced several remedial actions, including offering credit monitoring services to those affected. While credit monitoring can help individuals detect and respond to identity theft, in the context of a breach of this magnitude, it feels like a band-aid on a gaping wound. 🩹 There’s growing sentiment that organizations responsible for these breaches should face substantial consequences—not just offer temporary fixes. 🔒 How can we ensure that such sensitive data is better protected in the future? ⚖️ What can be done to enforce stricter #DataProtection standards and hold organizations accountable? #InfoSec #PrivacyMatters #IdentityTheft https://hubs.li/Q02M9wJw0

🔓 A recent lawsuit has uncovered a significant data breach involving billions of personal records of U.S. residents, allegedly mishandled by National Public Data (NPD), a background check company. This breach could be one of the largest in history, with approximately 2.9 billion records reportedly exposed on the dark web. ⚖️ The Allegations The class action lawsuit, filed in Florida, accuses NPD of collecting personal information from non-public sources without consent and failing to secure it properly. Among those affected is Christopher Hofmann, who received a notification from his identity theft protection service in July, alerting him that his data had been compromised. The lawsuit also criticizes NPD for not notifying those impacted or providing details about the breach. 🔍 The Breach The breach allegedly involves a database of 2.9 billion records being offered for sale by a threat actor known as “USDoD.” If accurate, this breach could rival some of the largest in history. Despite the staggering numbers, NPD has remained silent on the breach, adding to concerns about its data protection practices. 🛡️ How to Protect Yourself While data breaches are becoming more common, you can take steps to protect yourself: 🔑 Use Strong Passwords: Ensure your passwords are unique and difficult to guess. 🔒 Enable Multifactor Authentication (MFA): This adds a layer of security to your accounts. 👀 Monitor Your Accounts: Keep an eye on your financial accounts and credit reports for unusual activity. 🚫 Be Wary of Phishing Scams: Verify the authenticity of any breach-related communications. ❄️ Consider a Credit Freeze: Freezing your credit can help prevent identity theft. 📢 Conclusion This breach underscores the growing threats to our personal information. By staying vigilant and taking proactive steps, you can better protect your data in an increasingly digital world. 👉 Need expert help protecting your business from data breaches? CMIT Solutions specializes in comprehensive cybersecurity services to keep your company safe. Don’t wait for a breach—take action now to secure your data. https://lnkd.in/gsjBqy7j #DataBreach #CyberSecurity #DataProtection #PrivacyMatters #InformationSecurity #CyberThreats #TechNews #BusinessSecurity #CyberAwareness #DigitalSafety #cmitsolutions

Massive Data Breach Exposes Personal Information of Billions A data breach at National Public Data, a relatively obscure but widely connected company, has exposed 272 million Social Security numbers. This breach, reminiscent of the 2017 Equifax breach but on an even larger scale, has sent shockwaves through the #cybersecurity and #compliance sectors. Hackers infiltrated National Public Data’s systems, gaining access to a vast database containing highly sensitive information. This includes names, addresses, phone numbers, and, most alarmingly, Social Security numbers—data that’s now circulating on forums frequented by cybercriminals. A sister company, RecordsCheck, inadvertently published usernames and passwords to its back-end database on a publicly accessible webpage. This breach not only compromised sensitive consumer data but also exposed the lax security practices across related entities within the NPD network. The exposed archive, discovered by KrebsonSecurity, included source code and plain text passwords for various components of the RecordsCheck website, some of which were identical to those used by NPD. For those involved in sensitive government roles or with security clearances, this breach feels deeply personal. The exposure of such detailed personal data underscores a critical failure in protecting sensitive information. National Public Data has announced several remedial actions, including offering credit monitoring services to those affected. While credit monitoring can help individuals detect and respond to identity theft, in the context of a breach of this magnitude, it feels like a band-aid on a gaping wound. 🩹 There’s growing sentiment that organizations responsible for these breaches should face substantial consequences—not just offer temporary fixes. 🔒 How can we ensure that such sensitive data is better protected in the future? ⚖️ What can be done to enforce stricter #DataProtection standards and hold organizations accountable? #InfoSec #PrivacyMatters #IdentityTheft https://hubs.li/Q02M9x-Y0

YouAttest for identity security:  The majority of hacks start w/ identity.    https://lnkd.in/gAuUu7dQ Know your identities, and privileges, w/ (now AI-powered)   YouAttest.com, contact us:    https://lnkd.in/g96pUae  #ITSecurity #governance #cybersecurity  #compliance #mspsecurity

https://lnkd.in/ekspC7S7 Data breaches are never a great thing. There are millions of dollars that companies can be fined for allowing such incidents to happen. According to the article, AT&T sent out “…separate notice that the data set seems to be from 2019 or earlier and, while the type of information compromised varies by customer and account, it may include passcodes, full name and email address, home address, phone number, date of birth, and Social Security numbers.” Even though the company will be reaching out to current and past customers - the reactive action may come too late in the hour to protect millions of customers’ data that has been compromised. When it comes to data breaches, there could be several vulnerabilities that exhibit themselves. As a PCI DSS consultant, I understand the importance of being as proactive as possible. However, these types of incidents will happen and no place is 100% safe. Companies must follow the mandated rules of the PCI DSS framework, along with staying on top of patches that need to be applied to their networks as well as keeping all sensitive data secure. I wonder how this will turn out. Stay tuned… #vulnerabilitymanagement #ATT #PCIDSS #PCIcompliance #darkweb #data