Back to blog

Top 5 Cybersecurity Breaches in October

Pathlock
November 15, 2016

Top 5 Cybersecurity Breaches in October

November is already off to a surprising start with news that another adult web site was breached, resulting in the theft of over 412 Security Risk Analyticsmillion accounts. But let’s take a step back and take a look at the top 5 breaches reported in October: Modern Business Systems (MBS): MBS, a company that provides online data storage and database hosting solutions to other businesses, may have been breached. An online hacker posted on Twitter that he stole at least 58 million records from MBS that contained personal information stolen and published on the web. This data includes names, birth dates, email, address, job titles, phone numbers, vehicle data and IP addresses. The hacker also revealed that he may actually have close to 250 million records to release. Weebly: Yes… Weebly. It’s a company that offers a free web site builder and is now making news due to a recent breach that affected over 43 million users. The company announced that the breach involved email addresses and/or usernames, IP addresses and encrypted passwords. Weebly is still trying to uncover the cause of the breach, but they have taken steps to improve network security. Users had to reset passwords and now they are able to view their most recent login history to check for unauthorized access. Evony: It has been determined that the website and forum of Evony, a gaming company, had been breached, exposing information from 33 million gamers. Each record contains a username, email address, password, and IP address. The passwords were encrypted in a format that is very easy for hackers to decrypt. On a side note, the password ‘123456’ was used in almost 750,000 accounts. Australian Red Cross: The personal data of 550,000 blood donors that includes information about “at-risk sexual behavior” has been leaked from the Red Cross Blood Service in what has been described as Australia’s largest security breach. The breach occurred when a file containing donor information was placed on an insecure computer and accessed by an unauthorized person. The data came from an online application form and included personal details and identifying information such as names, gender, addresses and dates of birth. Vera Bradley: Vera Bradley Inc. announced that it is investigating a payment card breach that may have affected cards used at the retailer’s stores between July 25, 2016 and Sept. 23, 2016. The hackers gained unauthorized access to the company’s payment processing system by installing a program that looked for payment card data, including cardholder name, expiration date, card number and internal verification codes. From retailers to non-profits, no one seems to be immune from hackers. There is a better approach to protecting your company’s most valuable assets. Start by clicking here to learn how your cyber posture compares to other leading organizations.