info@qualityplusconsulting.com l +1 262-553-6510

QPC podcasts have moved

Please forgive our old content here while we reorganize and redo our old website.

All new QPC podcasts are hosted on a more convenient platform for all of us.

Please visit https://qpcsecurity.podbean.com where you can use the Podbean mobile app, stream directly from the site, and sign up for the RSS feed.

Breakfast Bytes - Verizon 2018 Data Breach Investigations Review

5/18/2018, 6/1/2018

 

 

Verizon RISK Team 2018 Data Breach Investigations Report - Analysis



Lessons learned from the elite Verizon RISK Team and their last 12 months' adventures assisting clients with breach assessment, termination, and remediation.

MP3 - Analysis of Verizon 2018 Data Breach Investigations Report - Part 1

MP3 - Analysis of Verizon 2018 Data Breach Investigations Report - Part 2

MP3 - Verizon Risk Team 2017 Data Breach Digest - Part 3

MP3 - Verizon Risk Team 2017 Data Breach Digest - Part 4

 

 DefenseInDepth

QPC reviews and analyzes the Verizon team's 2018 report

Every year, the Verizon RISK Team puts out a new report covering the patterns of risk they find to be most prevalent from the prior year. Often they correlate that to previous years and see if risk in categories is getting less, more, or no change. We always get a lot of entertainment from the RISK team's no nonsense approach.

This year, there sure were a lot of preventable issues.

Download the commented report here.

 

Overview

I really did not like the report's format this year. The 2017 version of the report format was great. They conveyed specific examples so you could evaluate the breach mechanisms and assess your risk mitigation strategies against the ways in which others were breached. This year's report focused more on overall statistical trends.

I strongly suggest you review the detailed writeup we did on the 2017 report because everything reported there is still valid for today.

QPC's analysis of the 2017 Verizon breach report

 

Very important info you need to know about your identity

Great article by Brian Krebs on the topic

https://krebsonsecurity.com/2018/05/another-credit-freeze-target-nctue-com/

How to freeze your credit file with everyone including Innovis

https://krebsonsecurity.com/2015/06/how-i-learned-to-stop-worrying-and-embrace-the-security-freeze/


Don't forget ChexSystems

Also visit optoutprescreen.com

How to opt out of Equifax sharing your entire life salary history

https://krebsonsecurity.com/2017/11/how-to-opt-out-of-equifax-revealing-your-salary-history/

“If his new prospective employer is among the 70,000 approved entities in Equifax’s verifier network with a “permissible purpose,” that company can purchase his employment and income information for about $20.”

Place a security freeze on your salary work history at http://www.theworknumber.com

 
 

VPNFilter infects over 500,000 consumer routers

https://www.secplicity.org/2018/05/30/vpnfilter-infects-over-500000-consumer-routers/

 
 
 


Linkedin