BuzzFeed News: The Year’s Biggest Data Breaches — And What To Do About Them. “Millions of people were affected by data breaches this year. The list of companies that were attacked or that inadvertently exposed customers’ data in 2018 is a long one. For consumers, the best way to protect yourself is to assume the worst. Change your passwords often, revoke third-party app access, and turn on app-based two-factor authentication to get ahead of hackers. Here’s how this year’s biggest breaches happened — and more on what you can do to secure your accounts.”
The Guardian: Hackers steal data on 1,000 North Korean defectors in South. “The personal information of nearly 1,000 North Koreans who defected to South Korea has been leaked after unknown hackers gained access to a resettlement agency’s database, the South Korean unification ministry has said.”
ZDNet: Caribou Coffee chain announces card breach impacting 239 stores. “US coffee store chain Caribou Coffee announced a security breach today after it discovered unauthorized access of its point of sale (POS) systems. The company listed 239 stores of its total 603 locations as impacted, which roughly amounts to 40 percent of all its sites.” The breach took place between late August and early December — over three months — and it looks like the breach could have gotten all credit card details.
Mashable: Student health, discipline, and Social Security info exposed in massive school district hack. “San Diego Unified School District, the second largest school district in California, said more than 500,000 students and staff had their personal information accessed through a data breach. Through a phishing attack, an unauthorized user accessed data from as far back as the 2008-2009 school year. The hack also affected 50 district employees.”
The Register: Houston, we’ve had a problem: NASA fears internal server hacked, staff personal info swiped by miscreants. “A server containing personal information, including social security numbers, of current and former NASA workers may have been hacked, and its data stolen, it emerged today.”
Harvard Business Review: Stopping Data Breaches Will Require Help from Governments. “Not a month goes by without a major corporation suffering a cyber attack. Often state-sponsored, these breaches are insidious, difficult to detect, and may implicate personal information relating to millions of individuals. Clearly, the current approaches to safeguarding sensitive data are insufficient. We need to reorient expectations for the role of the private sector in cybersecurity. As the risk of cyberattacks has become better appreciated, we see an increasingly punitive focus on holding corporate America solely responsible.”
CNN: Facebook could face billion dollar fine for data breaches. “Facebook could be facing a multi-billion dollar fine after a European regulator announced Friday that it is launching an investigation into the company over failure to protect user privacy.”