info@qualityplusconsulting.com l +1 262-553-6510

Special note for Ubuntu users

Breakfast Bytes podcasts are streaming MP3. In order for Firefox on Ubuntu to play the streaming MP3, install the GStreamer extra plugins that list MP3 as one of the supported formats. GStreamer can be obtained through the Ubuntu Software Center.

Breakfast Bytes - Verizon 2018 Data Breach Investigations Review

5/18/2018, 6/1/2018

 

 

Verizon RISK Team 2018 Data Breach Investigations Report - Analysis



Lessons learned from the elite Verizon RISK Team and their last 12 months' adventures assisting clients with breach assessment, termination, and remediation.

MP3 - Analysis of Verizon 2018 Data Breach Investigations Report - Part 1

MP3 - Analysis of Verizon 2018 Data Breach Investigations Report - Part 2

MP3 - Verizon Risk Team 2017 Data Breach Digest - Part 3

MP3 - Verizon Risk Team 2017 Data Breach Digest - Part 4

 

 DefenseInDepth

QPC reviews and analyzes the Verizon team's 2018 report

Every year, the Verizon RISK Team puts out a new report covering the patterns of risk they find to be most prevalent from the prior year. Often they correlate that to previous years and see if risk in categories is getting less, more, or no change. We always get a lot of entertainment from the RISK team's no nonsense approach.

This year, there sure were a lot of preventable issues.

Download the commented report here.

 

Overview

I really did not like the report's format this year. The 2017 version of the report format was great. They conveyed specific examples so you could evaluate the breach mechanisms and assess your risk mitigation strategies against the ways in which others were breached. This year's report focused more on overall statistical trends.

I strongly suggest you review the detailed writeup we did on the 2017 report because everything reported there is still valid for today.

QPC's analysis of the 2017 Verizon breach report

 

Very important info you need to know about your identity

Great article by Brian Krebs on the topic

https://krebsonsecurity.com/2018/05/another-credit-freeze-target-nctue-com/

How to freeze your credit file with everyone including Innovis

https://krebsonsecurity.com/2015/06/how-i-learned-to-stop-worrying-and-embrace-the-security-freeze/


Don't forget ChexSystems

Also visit optoutprescreen.com

How to opt out of Equifax sharing your entire life salary history

https://krebsonsecurity.com/2017/11/how-to-opt-out-of-equifax-revealing-your-salary-history/

“If his new prospective employer is among the 70,000 approved entities in Equifax’s verifier network with a “permissible purpose,” that company can purchase his employment and income information for about $20.”

Place a security freeze on your salary work history at http://www.theworknumber.com

 
 

VPNFilter infects over 500,000 consumer routers

https://www.secplicity.org/2018/05/30/vpnfilter-infects-over-500000-consumer-routers/

 
 
 


Linkedin