Isn’t it ironic? Following the massive Equifax breach of 2017, and the fallout from the OPM breach in 2016, how is that there are still monolithic breaches in 2018? How the #@*^&$ does this keep happening? I started charting a breakdown by sector and severity here. And I’ll also show disclosure dates because the time discovered vs the time revealed has huge impact to those caught up in a breach. It’s time used by the bad guys to sell the data and use that data for fraud. Victims deserve to know as soon as possible so they can choose what action they take to protect themselves, rather then rely on someone else to do that – badly – for them. A year of credit monitoring just doesn’t cut it.
What disturbs me is the amount of healthcare data out there, and the number of breaches, which exposes some very sensitive information of some very vulnerable victims. I’m going to continue to dig into this and show what I find. A special shout out to folks who are working hard to secure healthcare: I am the Cavalry, @JoshCorman, @_j3lena_, @_odddie_, @beauwoods to name but a few.
Here is the link to the spreadsheet Breach Report I am keeping and you are welcome to use what I share with the reminder to always be sure to cite your sources This is just the tip of the iceberg. I’ll do my best to share updates and links.
Where should you look if you have been breached or suspect you have? I recommend “Have I Been Pwned” by Troy Hunt, and there are other resources out there. Lots of people are doing great work in this field to whom I give all credit. I like to check DataBreaches.net