CSTI
    breachThe Commercial Era (2010-2019) Daily Briefing Landmark Event

    Major Breaches and Rising Phishing Threats: Cybersecurity Briefing for March 27, 2018

    Tuesday, March 27, 2018

    Today marks a critical moment in the cybersecurity landscape, with major breaches and increasing phishing threats coming to light.

    Under Armour Breach: This morning, Under Armour announced a significant data breach affecting its popular fitness app, MyFitnessPal. Approximately 150 million user accounts are compromised, with attackers gaining access to usernames, email addresses, and hashed passwords. The breach raises alarms about securing online health and fitness data, which is particularly sensitive due to its personal nature. Organizations handling such data must prioritize robust security measures to protect user privacy and maintain trust.

    Orbitz Data Breach: In related news, details from an earlier incident involving Orbitz emerged today. An attacker managed to access a legacy company system, exposing personal data of around 880,000 customers. This breach emphasizes the vulnerabilities associated with outdated web configurations. It serves as a reminder that organizations must regularly assess and update their systems to defend against potential cyber threats.

    Rising Phishing Attacks: Overnight, concerns continue to grow regarding phishing attacks, particularly within healthcare organizations. The Office for Civil Rights (OCR) at the Department of Health and Human Services is investigating several incidents where unauthorized access to sensitive patient information occurred due to phishing. These events highlight the critical need for employee training and improved email security protocols to thwart such attacks.

    In summary, today's events underscore the ongoing and escalating nature of cybersecurity threats faced by businesses and organizations. As breaches like those at Under Armour and Orbitz illustrate, the stakes are high, and the implications for personal data security are profound. The rise in phishing attacks further complicates the landscape, stressing the importance of robust training and awareness programs. It is clear that comprehensive cybersecurity strategies are no longer optional but essential for safeguarding sensitive data and maintaining organizational integrity.

    Sources

    Under Armour Orbitz phishing data breach healthcare security