- LabCorp's Ransomware infection
- Voter data breach
- ComplyRight breach
Security Vulnerabilities: LabCorp, Voter Data, & ComplyRight
Not only is it important to have systems in place to notify you of changes on your network, but your best protection against Ransomware is having offsite backups.
U.S. Voter Data
A robocalling company used for political campaigns failed to protect over 2,600 files. These files were hosted online with Amazon S3 and did not require any login credentials, meaning anyone who came across them could access them. These files contained personal information including:
- Birth year
- Phone numbers
The more information that is collected about you, the harder it can become to protect yourself. Every user account that requires security questions increases the risk to that data because it creates potential that the information might be accessed by an unauthorized user.
ComplyRight is a cloud-based human resources company that suffered a website security breach affecting 662,000 people. ComplyRight works with businesses to provide support for employee forms processing. The information accessed was on tax forms submitted by ComplyRight's clients on behalf of their employees, many of whom did not even realize their company utilized ComplyRight's services.
The breach, which occurred on their e-file website efile4biz.com, began on April 20, 2018 and continued through May 22, 2018. The breach may have jeopardized consumer information including:
- Phone numbers
- Email addresses
- Social Security numbers
As always, you cannot know everything going on with tech, but to best protect yourself it is important to be as informed as possible.