Blog

Uber was hacked in 2016, revealing the personal information of 600,000 Uber drivers and 57 million Uber passengers. If you joined Uber in or prior to 2016, there’s a good chance your data was exposed in the Uber Data Breach. Why are you learning about this now? Because on August 20, 2020, the Federal Trade Commission filed a criminal complaint against Joseph Sullivan, Uber’s former Chief Security Officer, because he not only didn’t report the crime, he actively worked to “conceal, deflect, and mislead the Federal Trade Commission about the breach,” according to the FTC.
About the Uber Data Breach
This wasn’t even the first time that Uber had been hacked: Uber had been breached in 2014, and Sullivan was selected by Uber to respond to the FTC’s inquiries into that data breach.

Sometimes cyber-attacks enter your company network when an employee stumbles upon a virus-filled web page. Other times the cyber-attack begins when an employee falls victim to a phishing attack, or is tricked into downloading a virus-filled file. Other times it’s a brute force attack on your network.

Does your company collect, store and protect consumer data consistent with the California Consumer Privacy Act (CCPA)? On January 1 of this year, the CCPA took effect, and already there are lawsuits being filed under its provisions. The CCPA is a far-reaching privacy law that is designed to protect California consumers by requiring companies to secure their consumer data.

The changes that COVID-19 has brought to this world are unprecedented, affecting every part of our lives, our businesses and our supply chains. We live in strange times when both webcams and toilet paper have become scarce on store shelves for exactly the same reason.

An SIEM is critical to your Cybersecurity planning. Why? It turns out there are many ways to secure an organization’s network, but can you depend on any of them to be 100% reliable? The answer is no. Zero-Day exploits, File-less malware, Phishing, Social Engineering, Brute Force Attacks, lost or stolen mobile devices.

Email security threats put every business in danger. All companies are required to keep Personally Identifiable Information (PII) secure, and health care companies are also required to keep health-related information, called Protected Health Information (PHI) secure, too.

There are many perks and privileges that come with being in C-Suite -- the upper management levels of a corporation. Among the perks available in some companies are company cars, big expense accounts, and corner offices. But in almost every company, C-level executives also have the ability to make and set rules.

Many varieties of ransomware begin doing damage as soon as they gain a foothold on the target network. They gain access often by Phishing techniques, credential stealing, or brute force attacks on internet-facing devices, and skillfully bypass or disable weak to moderate cybersecurity systems during installation.

A recent FBI announcement revealed that they expect that “telework software vulnerabilities” will be a major focus of cyber-criminals due to COVID-19 pandemic. (See the companion article in this issue.) With millions of business people now working from home in a hurry, each with potentially different devices, connections, firewalls and VPNs (or perhaps no firewalls or VPNs), now is the time to make sure your business is secure with remote worker security.

Attempts at Cyber Crime are increasing all the time, and the Coronavirus pandemic has given cyber criminals new logic and reasoning that they are exploiting in order to gain access to networks, install ransomware, steal personally identifiable information, and empty company and personal bank accounts.