Security Breach – 5th May 2022

Compliance image

Security Breach – 5th May 2022

Security and compliance training isn’t just another expense for businesses. It’s actually an opportunity to save money in several unexpected ways that benefit your company’s security and your bottom line.

The price of compliance failure is high and growing every year. But companies that engage in regular security and compliance training save money on compliance. A corporate data security training program saves businesses an average of $2.54 million in costs.

Increasing training decreases the number of security incidents that companies have because educated employees are less likely to make mistakes and more likely to know what to do if they suspect trouble. Companies that engage in regular security awareness training have 70% fewer security incidents.

Recent Breaches

 
USA – The Coca Cola Company – Beverage Manufacturer & Distributor

Exploit: Ransomware

Risk to Business: Moderate: The new ransomware group Stormous claims they’ve pulled off a ransomware attack against The Coca-Cola Company, claiming that it snatched 161 gigabytes of data. The hacking group has been linked with Russian nationalist cybercrime following its public statement vowing to take action against companies that pulled out of Russia in the wake of Russia’s invasion of Ukraine. Financial data, passwords and commercial account records are said to be among the stolen data. Coca-Cola says that it is investigating the matter.  

Risk to Exploited Individuals: No information about consumer/employee PII, PHI or financial data exposure was available at press time.

Customers Impacted: Unknown

UK – The General Council of the Bar – Regulatory Body

Exploit: Hacking

Risk to Business: Severe: The General Council of the Bar (GCB) notified users of its website that it has been the victim of a cyberattack. GCB comprises the representative Bar Council and regulator Bar Standards Board. The attack has rendered several systems temporarily inaccessible including MyBar. The body’s statement notes that Authorisation to Practise and Court ID cards have both been extended due to this technical difficulty. The incident has been reported to ICO, National Cyber Security Centre and the Police.

Risk to Exploited Individuals: No information about consumer/employee PII, PHI or financial data exposure was available at press time.

Customers Impacted:  Unknown

Talk to a TCT team member today about implementing cyber security and phishing training plan for your staff.

Robert Brown
5/05/2022

Follow us on LinkedIn: 

Related Articles:
Cybersecurity mistakes that leave your data at risk
Ransomware considered top threat to financial sector