Data Breach: NY Regulator Finds Social Network Lacked Appropriate Security

A social network platform was breached by hackers taking advantage of remote working vulnerabilities (i.e., the hackers exploited employees’ VPN issues by calling and impersonating IT personnel); the platform had no CISO in place, and did not implement any significant compensating controls after shifting to a remote workforce (e.g., proper multi-level authentication, phishing and vishing campaigns for employee awareness).

Total
0
Shares
Previous Post

Data Breach: Retailer to Pay NJ AG $235,000 for Improper Disposal by Supermarket Pharmacies

Next Post

ICO issues enforcement notice against Experian

Related Posts
Total
0
Share
en_USEN