Security Breach – 30 Aug 2021

password-security

Security Breach – 30 Aug 2021

Passwords are serious business. How serious?

The Verizon Data Breach Investigations Report 2021 declares that 80% of data breaches are caused by shared, recycled, insecure, compromised or just plain bad passwords. Plus, a plethora of new online accounts opened by locked-down consumers has brought password reuse into focus.

Mix that up with a veritable inundation of new records to the dark web in the last 12 months, and you’ve got the perfect recipe for password calamity – and it’s unfolding all over the cybersecurity landscape.

Recent Breaches

 
Australia – LimeVPN – Security Company

Exploit: Hacking

Risk to Small Business: Severe: A hacker stole the backup database, customer payment details, private keys, and took the website offline. In the case of LimeVPN, it means over 69,000 users have had their personal information stolen and put up for sale to the highest bidder.

Risk to Exploited Individuals: Severe: All of LimeVPN’s customers are now at risk because the backup server included a database of their details including username, email address, and password alongside payment information. LimeVPN uses the Web Hosting Billing and Automation service known as WHMCS to handle payments. Also of serious concern is the fact the hacker claims to hold the private key of   every user, meaning any traffic passing through LimeVPN can potentially be decrypted.

Customers Impacted: over 69,000 users

France – Chanel – Fashion House

Exploit: Ransomware

Risk to Small Business: Moderate: French luxury brand Chanel has issued an apology after personal data belonging to its customers was exposed in an incident that impacted customers in Korea. A database belonging to the famed perfume and fashion brand is believed to have been compromised by hackers in a cyberattack at an unnamed cloud-based data storage firm

Risk to Exploited Individuals: Moderate: The stolen data includes birth dates, customer names, gender details, passwords, phone numbers and shopping or payment history. The incident is still under investigation and complete details have not been released.

Customers Impacted: Unknown

Contact Total Computer Technology today and let us help you stay on track to avoid the perils of sloppy cybersecurity.

Robert Brown
30/8/2021

Follow us on LinkedIn:

Related Articles:
Australians lost $851m to scams in 2020
F-Secure’s Platform to beat Cyber Threats