Breach Guide

Learn the steps to take in the event of a data breach and stay current on the cyber threat landscape with the FTC’s Data Breach Resources, FBI’s Daily Digest Library and San Diego’s Cyber Incident Response Guide.

Federal Trade Commission (FTC) Data Breach Resources

Find out the steps to take as a business or consumer if you experience a data breach.

ftc-gov

FBI Cyber Daily Digest Library

Stay current on the global threat landscape with the FBI’s daily circulation of published data breaches and articles.

  • 4 myths cybersecurity experts want busted

    • Four in 10 employees believe it's "maybe" possible for malware to infect devices that are "too close" to each other...
    • Employee awareness around security has shifted in the last five years, despite efforts by technology vendors.
    • The tech industry has undergone an evolution from vendors claiming technologies and tools would replace employee security training.
    - Samantha Ann Schwartz | May 19, 2020
  • Microsoft warns of 'massive' phishing attack pushing legit RAT

    • Microsoft is warning of an ongoing COVID-19 themed phishing campaign that installs the NetSupport Manager remote administration tool.
    • In a series of tweets, the Microsoft Security Intelligence team outlines how this "massive campaign" is spreading the tool via malicious Excel attachments.
    BleepingComputer - Lawrence Abrams | May 19, 2020
  • EasyJet says cyberattack exposed data of 9 million customers

    • UK budget airline EasyJet reported on Tuesday that hackers accessed the email addresses and travel details of more than 9 million customers in a "highly sophisticated" cyberattack. The hackers also accessed the credit card details of 2,208 customers.
    • As soon as the airline became aware of the attack, it took steps to respond to and manage the incident and engaged forensic experts to investigate the issue, EasyJet said.
    • It also notified the National Cyber Security Centre and the ICO, the UK's data protection watchdog.
    - Katie Collins | May 19, 2020
  • The Tech Headaches of Working From Home and How to Remedy Them

    • From shoddy Wi-Fi to digital distractions, our tech can make remote work miserable. Here’s how to overcome the problems.
    • When it comes to remotely collaborating with a team of colleagues, the path to success has less to do with tools than having empathy for one another when we use tech.
    - Brian X. Chen | May 18, 2020
  • The 3 biggest security mistakes businesses are making

    • Attackers are capitalising on the emergency coronavirus situation we are in, primarily targeting small businesses.
    • Many people think that Cybersecurity is just an IT problem, yet Cybersecurity is a business problem.
    | May 18, 2020
  • 86% of data breaches are conducted for financial gain

    • Verizon released its 2020 Data Breach Investigations report on Tuesday, outlining the biggest cybersecurity threats hitting the enterprise and providing tips on how to handle the risks. The majority (86%) of data breaches are for financial gain—up from 71% in 2019.
    • The majority of breaches (70%), however, are caused by external actors, with organized crime accounting for more than half (55%) of them. Credential theft and social attacks including phishing and business email compromises caused more than 67% of breaches.
    TechRepublic - Macy Bayern | May 18, 2020
  • SCOTUS Review of CFAA May Impact Analysis in Data Breach Notification Obligations

    • For the first time, the U.S. Supreme Court has agreed to review the Computer Fraud and Abuse Act (CFAA) in Van Buren v. United States, No. 19-783.
    • How the Supreme Court decides Van Buren will transform the landscape for CFAA claims in trade secrets and employment litigation. Simultaneously, the decision should also bring much needed clarity to the definition of “authorization” in the context of data breach statutes, notification obligations, and ensuing data breach litigation.
    The National Law Review - Kari M. Rollins and David M. Poell | May 18, 2020
  • Tusla becomes first organisation fined for GDPR rule breach

    • Agency fined €75,000 over three cases where data about children was wrongly disclosed.
    • The child and family agency, Tusla, has become the first organisation in the State fined for a breach of the General Data Protection Regulation (GDPR).
    The Irish Times - Colm Keena | May 17, 2020
  • Covid-19: Protect your business systems against cyber attacks

    • With all our energy of the past several weeks focused on adapting to the global crisis, security may have taken a back seat. But cybercriminals haven’t forgotten.
    • While each network environment is different, there are things organisations can implement to reduce their risk from ransomware and other advanced threats:
    Bedfordville and Edenvale News | May 17, 2020
  • Cyberattackers mimic government websites in phishing emails using templates

    • Cyberattackers have been mimicking government websites in phishing emails related to the coronavirus pandemic with ready-made templates.
    • Watch for misspelling, fraudulent display names, and fake sender email addresses. If the email looks suspicious, skip the link and type in the address of the actual page...
    FOX Business - Audrey Conklin | May 17, 2020

San Diego Cyber Incident Response Guide

Learn more about San Diego’s region-wide cyber incident response guide and available local, state and federal resources.

San Diego Cyber Incident Response Guide October 2017