You should research and identify one publicized breach that occurred within the last five years. Your research on this breach should include but is not limited to:
● Background
○ Business name and history (short version)
○ Industry
○ Hardware/software/applications involved (if available)
○ Timing (Was this relevant, as with the Target breach?)
● Breach/Compromise
○ Attacker’s methodology
○ System(s) attacked
● Exfiltration
○ Data/information exfiltrated?
■ What data?
■ Amount of data?
○ How was this exfiltrated? (This may not be available.)
● Potential Effects to the Persons Involved
○ For example, credit monitoring, fraud, and so forth
● Impact to the Business
○ Rapport with the business community
○ Lawsuits
■ Civil (consumers suing)
■ Civil (commercial entities [e.g., banks] suing)
■ Civil (government [e.g., FTC with Wyndham Hotel lawsuit])
● Lessons Learned
○ What could the affected business have done differently?
○ Why did they not follow industry standards, if applicable?
Expert Answer
The data breaches are getting more common these days,and the internet users think that the quick security fixes and making a new password will save their future.
The Heart bleed encryption bug is apparently the best known breach of last few years.After almost two years the public came to know about the existence of the bug by security firm Codenomiconon.A huge number of companies were affected in which Amazon, Pinterest, Reddit, Tumblr, Airbnb, WordPress, and Wattpad are included.Heartbleed affected about 17% of the Internet’s secure web servers making passwords accessible to theft about the information that was normally protected by SSL/TLS encryption.
The industry organized one of its biggest responses ever to a data breach by creating the Core Infrastructure Initiative, a multi-million dollar project to fund critical elements of the web’s infrastructure.internet users on each site were asked to change their passwords.