Evolver News Round-Up: Nearly 15 Million Texas Voter Records Found Vulnerable
News Round-Up – Get a Quick Rundown of What You Need to Know
Evolver’s Cyber News Round-Up looks into recent reports and journalism covering cyber threats and trends affecting all industries. You can suggest articles to us on LinkedIn and on Twitter at @EvolverInc. Visit our cybersecurity services page to learn more about cyber risk assessment and threat protection.
Personal Information of 14.8 of 15.2 Million Texas Voters Exposed
As reported by InfoSecurity Magazine, a data breach hunter was able to access a file that could have exposed the information of millions of voters in Texas. The file that contained the 14.8 million voter records was found to have no password and also be located on an unsecured server. The article points out that the data includes personal information such as addresses, names, gender, previous voting decisions, and even political preferences.
Fake Email Sending Has Reached a Rate of 6.4 Billion Daily
HelpNetSecurity recently published an article noting the increased ocurrence of scam emails in recent years. Although new regulations such as DMARC have been put in place to prevent successful scams involving fake email domains, 96.2% of emails still pass the test. The article also notes that of the 6.4 billion fake emails every day, the United States has also been found to lead the pack as the number one source.
Over Three Quarters of IT Professionals Believe They Will Be Hacked Within a Year
Although 77% of those who make cybersecurity decisions say they think their company will be attacked, a whopping 48% admitted that the organization has no plan for when an attack occurs, as described by TechRepublic. Cost and personnel are believed to be the two biggest issues when it comes to forming such a plan. Additionally, it is noted that 58% of surveyed professionals said their company’s success is hindered by the difficulty of finding and hiring cybersecurity professionals that are qualified for the job.
Over Half a Million Card Numbers Exposed in Data Breach at Cheddar’s Restaurant
According to an article by SCMagazine, the numbers of 567,000 different card numbers were leaked due to a hack from November of last year to January 2018. However, SCMagazine also notes that the system involved in the incident, belonging to Cheddar’s restaurant, is one that is no longer used as of April 10th, 2018. The restaurant has called in an outside forensics team to look into the breach.
Air Canada App Breach Leads to the Reset of 1.7 Million Passwords
According to a recent publication from NakedSecurity, around 200,000 accounts were invaded as a result of a breach in Air Canada’s mobile application. The breach, occurring somewhere in between August 22 and August 24, exposed names, phone numbers, account numbers for Air Canada Aeroplan members, email addresses, and potentially much more personal information, NakedSecurity says. As a result, the article notes, 1.7 million people must reset the passwords for their accounts. Additionally, although the amount remains unknown, it is possible that passport data for many of those affected got out as well according to the article.
Data Breach Hits Atlas Quantum Cryptocurrency Investment Platform
As published by InfoSecurity, cryptocurrency investment platform Atlas Quantum was breached on August 25. The incident, the article notes, did not include the hacker stealing any bitcoin but rather exposed users’ data. Atlas Quantum spoke out about the incident to let everyone know that the database has been encrypted and therefore protected since the time of the event. Names, email addresses, and user account balances were all a part of the data exposed.
An Update on the Cosmos Bank Heist
BankInfoSecurity’s recent article discusses updates on the $13.5 million loss from the Cosmos Bank Heist that took place in an operating staged between August 11 and August 13. BankInfoSecurity explains there has not yet been any significant evidence to suggest that the heist was completed by a major hacking group. Additionally, they note that police have begun getting back money that was incorrectly placed into customer’s accounts during the attack. The heist was likely a result of outdated security technology as well as low standards for encryption requirements, BankInfoSecurity says.