Recent large data breaches involving the loss of sensitive employee information are signaling a shift in the security landscape. Hackers are no longer focusing solely on credit card information and financial data to sell on the black market. Instead, cyber thieves driven by different goals are now targeting a wider variety of information, from password credentials and employment records, to potentially damaging email exchanges that could be used as blackmail or to damage brand reputation.
Preparing for incidents of this nature requires organizations to rethink the type of data we secure and what it means to prepare for a data breach. In today's world, businesses need to think broadly about fostering a security culture across the board, and know how to communicate effectively if an incident affecting more than customer data does occur.
Based on experience servicing some of the largest data breaches to date, Michael Bruemmer, vice president, Experian Data Breach Resolution, compiled five considerations organizations need to take into account in order to properly prepare for an employee data breach. First and foremost, it is important to keep in mind that employees are arguably an organization's biggest asset, and therefore require different considerations than other audiences potentially affected by a breach.
Whaling is a type of spearphishing targeting "big fish" in an organization with access to sensitive, highly-valuable information. ... More >>
Five common failures companies make when preparing for, and responding to, a data breach, as well as guidance for companies on how they can tackle these issues. ... More >>
Incorporating security capabilities such as encryption, better control and management and a data security framework will help alleviate the burden breaches place on the organization and people's lives. ... More >>