Walnut Creek, Calif., Sept. 28, 2020 -- Here's your round-up of select data breaches that were analyzed, risk-scored and added to the Breach Clarity database of publicly-reported data breaches this week. Also, CEO Jim Van Dyke talked with consumer expert Herb Weisbaum at KOMO News about the widespread Blackbaud data breach.
Breaches added this week: 48
Grace & Porta Benefits Breach Clarity Score - 10
(Note: This breach was reported in June, but was just added to the database of publicly-reported data breaches this week. We've included it in this week's digest because of the high risk score.) Unauthorized access to an email account at Grace & Porta resulted in the exposure of personal data included in emails or attachments that passed through that email address. Data types exposed include: Social Security numbers, credit and debit card information, bank account numbers, medical records, and others.
What should you do? With email-based data breaches, the information exposed can vary for each victim, since it depends on the records contained in the exposed emails and attachments. If you have done business with Grace & Porta, you should review what information you have provided to them to better understand your risks. Any time a breach exposes data that is this sensitive, victims should take the time to make sure that they have put essential protections in place across all aspects of their identity. This includes locking or freezing your credit report; using strong authentication on your bank accounts, email, and other important services; and making sure that you have set up alerts for suspicious activity on your accounts.
Cognizant Technology Solutions Corporation Breach Clarity Score - 9
(Note: This breach was reported in June, but was just added to the database of publicly-reported data breaches this week. We've included it in this week's digest because of the high risk score.) A ransomware attack against Cognizant compromised records containing Social Security numbers, bank account information, driver’s license numbers, and more. In ransomware attacks, the goal of the attack is typically to extort the infected organization into paying to regain access to their files, although some ransomware strains also take the encrypted files and send them to the group managing the malware.
What should you do? Since the information stolen in this breach creates a high risk of fraudulently opened credit (loan accounts), safeguards like locking or freezing your credit are the best place to start. If you expect to need to have your credit account unlocked, enrolling in credit monitoring through the provider offered by the breached organization or through a free service can help keep you informed of potentially suspicious changes to your credit report.
Piedmont Cancer Institute, P.C. Breach Clarity Score - 6
Unauthorized access to an email account at the Piedmont Cancer Institute resulted in the exposure of personal data included in emails or attachments that passed through that email address. Data types exposed include: bank account information, credit and debit card information, and medical records.
What should you do? With email-based data breaches, the information exposed can vary for each victim, since it depends on the records contained in the exposed emails and attachments. If you have done business with the Piedmont Cancer Institute, you should review what information you have provided to them to better understand your risks.
Exposed medical information can provide valuable background information on victims that is particularly useful for scammers. Victims of this breach should be on high alert for individuals contacting them claiming to be from their bank, insurance, healthcare provider, or other trusted organizations. If you receive a suspicious call or email, you should end the call and contact the organization directly.
Kroto Inc. dba iCanvas Breach Clarity Score - 6
A cyberattack on the website of iCanvas resulted in theft of data entered into the checkout section of the organization’s online store. The breach exposed most data types provided during checkout, including credit and debit card numbers, expiration dates, security codes, email addresses, and more.
What should you do? When credit or debit card data is stolen, you should contact your issuer to determine whether you need a replacement card. Many card issuers also allow you to set up alerts for large or unusual purchases. These alerts can help you quickly identify suspicious activity and notify your bank or credit union of the fraud.
About the Breach Clarity Score
Breach Clarity (Finovate 2020 winner of Top Emerging Tech Company) created a proprietary algorithm that deeply analyzes and assigns every publicly-reported data breach a Breach Clarity Score, most-often from 1 to 10. The higher the score, the more severe. (In rare and extreme cases, the score can exceed 10.) Think of it as a "Richter Scale" for data breaches.
The idea for the Breach Clarity Score came from Jim Van Dyke, one of the country's top experts in data breaches. He realized the public should be able to access the same analysis he used as an expert witness to discern data breach risks in the country's biggest data breach cases. Breach Clarity's artificial intelligence algorithm simulates that advanced, objective analysis, and is available to anyone as a free tool in the fight against identity fraud and cybercrime. Find the score, risks and recommended action for any publicly-reported data breach for free at www.breachclarity.com.
The Green Sheet Inc. is now a proud affiliate of Bankcard Life, a premier community that provides industry-leading training and resources for payment professionals. Click here for more information: bankcardlife.com?orid=33533&opid=1 .
Source: Company press release.