Monday, September 21, 2020
Analysis of publicly reported data breaches available
Data breach analysis firm Breach Clarity maintains a database of publicly reported data breaches. Through a proprietary algorithm, it analyzes and assigns every data breach in the database a Breach Clarity Score, which is most-often from 1 to 10. The higher the score, the more severe.
The company highlighted four recent breaches, as follows:
NAFSA: Association of International Educators
A cyberattack on NAFSA’s website resulted in theft of data entered into the checkout section of the organization’s online store. The breach exposed data entered during checkout, including credit and debit card numbers, expiration dates, and security codes. Breach Clarity Score: 4
What should you do? When credit or debit card data is stolen, you should contact your issuer to determine whether you need a replacement card. Many card issuers also allow you to set up alerts for large or unusual purchases. These alerts can help you quickly identify suspicious activity and notify your bank or credit union of the fraud.
American College of Medical Genetics and Genomics
A vulnerability in software used by the American College of Medical Genetics and Genomics (ACMG) may have allowed cybercriminals to access personal information stored on ACMG’s systems. Exposed data types include: names, email addresses, and credit and debit card details. Breach Clarity Score: 4.
What should you do? When credit or debit card data is stolen, you should contact your issuer to determine whether you need a replacement card. Many card issuers also allow you to set up alerts for large or unusual purchases. These alerts can help you quickly identify suspicious activity and notify your bank or credit union of the fraud.
Department of Veterans Affairs - Financial Services Center
Cybercriminals were able to gain access to an application within the Department of Veterans Affairs Financial Services Center. According to the VA, the primary purpose of this attack was to redirect payments intended for healthcare providers to accounts under the control of the perpetrators. However, in the course of this attack the criminals also were able to access certain types of PII. Breach Clarity Score: 3.
What should you do? Since the information stolen in this breach creates increases your risk of fraudulently opened credit (loan accounts), safeguards like locking or freezing your credit are the best place to start. If you expect to need to have your credit account unlocked, enrolling in credit monitoring through the provider offered by the breached organization or through a free service can help keep you informed of potentially suspicious changes to your credit report.
Jasper Seating Co.
A cyberattack against the Jasper Seating Co. exposed victim’s names, addresses, and Social Security numbers. At this point Jasper has not disclosed any additional details around the nature of the breach or the objectives of the perpetrators. Breach Clarity Score: 3.
What should you do? For victims with breached Social Security numbers, credit safeguards like locking or freezing your credit are the best place to start. Setting up alerts and strong authentication at your bank or credit union can help protect your financial accounts.
Free access to database
The concept of the Breach Clarity Score came from data breach expert Jim Van Dyke.
"He realized the public should be able to access the same analysis he used as an expert witness to discern data breach risks in the country's biggest data breach cases," the company wrote. "Breach Clarity's artificial intelligence algorithm simulates that advanced, objective analysis, and is available to anyone as a free tool in the fight against identity fraud and cybercrime."
To find the score, as well as the risks and recommended action for any publicly reported data breach, visit www.breachclarity.com. The service is free.
Whether you want to upgrade your POS offerings, find a payment gateway partner, bone up on fintech regs or PCI requirements, find an upcoming trade show, read about faster payments, or discover the latest innovations in merchant acquiring, The Green Sheet is the resource for you. Since 1983, we've helped empower and connect payments professionals, starting with the merchant level salespeople who bring tailored payment acceptance and digital commerce tools, along with a host of other business services to merchants across the globe. The Green Sheet Inc. is also a proud affiliate of Bankcard Life, a premier community that provides industry-leading training and resources for payment professionals.
Notice to readers: These are archived articles. Contact information, links and other details may be out of date. We regret any inconvenience.
