The first month of 2018 has resulted in multiple breaches, along with organizations having to pay settlement dollars because of previously compromising confidential information.
These data breaches ranged from electronic toy companies, to food service establishments and health insurance providers – showing that security incidents happen in a variety of industries.
Here are the recent data breaches and settlements that made headlines in January 2018:
This massively popular delicatessen fell victim to a scheme exposing as many as 2 million of its customers’ credit card information. In early January, Jason’s Deli confirmed that at least 164 of its 275 locations were affected by the breach, which lasted 6+ months. Using what’s known as RAM-scraping malware, criminals captured data via the deli’s point-of-sale terminals. The breach was discovered when this data was found for sale on the Dark Web.
International electronic toy manufacturer, VTech Technologies, reached a settlement with the Federal Trade Commission (FTC) after a major breach in 2015 that exposed the personal information of approximately 6.4 million children worldwide. The company will pay $650,000 for failing to follow proper procedures and adequately protect customer data. The nature of this breach is particularly troublesome, as it pertains to children and exposes the dangers of internet-connected electronic toys.
In an even larger settlement, health insurance titan, Aetna, will pay $17 million after a low-tech data breach first reported in August 2017. A direct mailer from the company revealed the confidential medical information of about 12,000 HIV positive patients. Part of the letter was visible through a window in the envelope, reading “filling prescriptions for HIV Medication.” Obviously, this highly-personal medical information had no business being visible to the public eye. We’re glad the company has acknowledged its mistake and is prepared to make reparations.
Be sure to check back next month for the latest major data breaches in 2018.