Sontiq BreachIQ Data Breach Report: Week of October 18

Each week, Sontiq uses its BreachIQ capability to identify recent notable data breaches reported. These violations are highlighted because of the increased risks to the security of the identity of the victims. BreachIQ uses a proprietary algorithm to analyze over 1,300 data breach factors and create a risk score on a scale of 1 to 10. The higher the score, the higher the risk score. infringe and the level of risk.

One of the main challenges we have encountered in motivating consumers to take action on a data breach is the lack of context as to the severity of the risk created by the data breach. Unfortunately, coverage for data breaches often falls into one of two camps: either the breach is covered as a devastating blow to consumer identity security and privacy, or the incident is described as an incident. trivial that is unlikely to have serious consequences. In reality, of course, most breaches are somewhere in the middle; they create significant risks for the identity of victims which can be mitigated by specific actions on the part of the persons concerned. Within BreachIQ, we tend to think of the risks created by breaches in the context of the seriousness of the identity crimes enabled by the data exposed in the breach:

Low risk (BreachIQ score 1-3): Data breaches at this level are the least likely to lead to identity theft, scams and fraud that could harm affected consumers. Typically, this means that the breach exposes victims to direct risk from relatively low impact types of fraud (for example, unsophisticated spam or phishing messages) and that fraudsters should supplement the exposed data. in this violation with other types of PII to commit most types of fraud. .

Moderate risk (BreachIQ score 4-6): Data breaches in this range create a significant risk of identity theft, scams or fraud which could result in some degree of harm to affected consumers. Most breaches in this category contain all of the data necessary to commit at least one type of fraud (e.g., a breach that exposes card numbers, security codes, expiration dates, etc.), but expose often victims have a narrower range of threats than the highest. – risk of infringements.

High risk (BreachIQ score 7-10): Data breaches at this level are likely to lead to identity theft, scams or fraud that significantly harm affected consumers. The riskiest breaches expose rich identity data types that are used in a wide variety of fraud schemes. For example, a breach that exposes a victim’s name, social security number, date of birth, and other biographical details such as income or work history can be used to open new fraudulent accounts, take over accounts. existing financial accounts or file an income tax return on behalf of the victim. .

New breaches added: 11

Source of reproduction

BreachIQ Score: 10

A ransomware attack against compromised ReproSource records containing sensitive personal information. In ransomware attacks, the objective of the attack is usually to extort the infected organization to pay for regaining access to its files. Many ransomware strains also take the encrypted files and send them to the group that manages the malware. The types of data exposed vary among individuals, but include contact information, billing information, test results, and other medical records. For a smaller number of victims, social security numbers, financial account information, and credit and debit card information were also exposed.

What should you do Whenever a breach exposes such sensitive data, victims should take the time to ensure that they have essential protections in place in all aspects of their identity. This includes locking or freezing your credit report; using strong authentication on your bank accounts, emails and other important services and making sure that you have set up alerts for suspicious activity on your accounts.
More information

Township of Plumstead

BreachIQ Score: 87

Unauthorized access to email accounts at Plumsted Township allowed the attacker to access sensitive information contained in emails and attachments from compromised accounts between April 19 and May 24, 2021. The types Data exposed vary by victim, but include social security numbers, driver’s license numbers, financial account information, medical history, insurance information and more.

What should you do Since the information stolen during this breach creates a high risk of fraudulent credit opening (loan accounts), protective measures such as foreclosing or freezing your credit are the best place to start. If you anticipate needing to unlock your credit account, signing up for credit monitoring through the provider offered by the breached organization or through a free service can help you stay informed of potentially changes. suspicious of your credit report.

More information

Timios, Inc.

BreachIQ Score: 7

A ransomware attack on Timios, Inc. compromised records containing sensitive personal information. In ransomware attacks, the objective of the attack is usually to extort the infected organization to pay for regaining access to its files. Many ransomware strains also take the encrypted files and send them to the group that manages the malware. The types of data exposed include social security numbers, driver’s license numbers, financial account information, credit and debit card numbers, and more.

What should you do Since the information stolen during this breach creates a high risk of fraudulent credit opening (loan accounts), protective measures such as foreclosing or freezing your credit are the best place to start. If you anticipate needing to unlock your credit account, signing up for credit monitoring through the provider offered by the breached organization or through a free service can help you stay informed of potentially changes. suspicious of your credit report.

More information

Southern Nevada University Medical Center

BreachIQ Score: 5

A cyberattack on the University Medical Center of Southern Nevada gave the author access to sensitive information on June 14 and 15, 2021. The types of data exposed include social security numbers, insurance information, medical records such as diagnoses and test results etc.

What should you do Since the information stolen during this breach creates a high risk of fraudulent credit opening (loan accounts), protective measures such as foreclosing or freezing your credit are the best place to start. If you anticipate needing to unlock your credit account, signing up for credit monitoring through the provider offered by the breached organization or through a free service can help you stay informed of potentially changes. suspicious of your credit report.

More information

Comments are closed.