The top security snafus and data breaches were as surprising as they were big and will be discussed for years to come. A breach in security is always a matter of concern. No one wants to be violated on a personal level. When it becomes a business or government issue, weaknesses in security can have major ramifications, a ripple effect that can spread out of control.
What Are Some Notable Recent Security Breaches?
In many instances, attacks on security have struck at a global level. Here are the top ten security snafus that have had people talking in recent history.
1. Snowden Reveals a Shaky Foundation for America’s National Security Exposed
In June of 2013, the story of Edward Snowden hit the news. Apparently, a 29-year-old man, with no high school diploma and a short stint as a security guard at the University of Maryland, managed to infiltrate the government’s internal security network. Snowden was recently hired as a tech employee for the Booze Allen Hamilton Firm, a private consulting company. Contractors were hired to do work for the National Security Agency.
This chance opportunity was enough to open the door for Snowden. The young man had enough technological savvy to get a hold of countless, top-secret documents. He’s already leaked some of the stolen files, has fled the country and is threatening to leak more vital information if he is not granted asylum. It’s placed the US government and President Obama in a sticky situation. They walk a tightrope right now, waiting to see what else is going to hit the fan if Snowden is not dealt with quickly, effectively plugging the leak of more government documents.
2. RSA Security: Not So Secure
The RSA Security company found itself facing the music when as many as 40 million personal records for employees were stolen, divulging information that could lead to catastrophic repercussions for many individuals, primarily through identity theft. Hacker groups, inspired by a foreign government, were blamed for the breach. While customer files were not affected, RSA found itself under a major financial burden, dishing out nearly $70 million to correct the situation.
3. The Department of Veteran Affairs is Dealt a Severe Blow
A national database concerning veterans, current military members, and their family members was stored on an analyst’s computer in Maryland. An unidentified intruder stole the computer and released information for over 26 million individuals. Social security numbers and birthdates provided the perfect recipe for anyone who wanted to try their hand at identity theft, providing them with a financial ticket to credit and funds belonging to those who served our country, a major disgrace in itself. While the computer was returned by an anonymous source, the total losses from this security snafu mounted to a figure as high as $500 million.
4. CardSystems Solutions Proved they Didn’t Have all of the Answers
Using a SQL Trojan, hackers stole credit card information from 40 million clients. Encryption was one major form of protection that this company failed to offer its customers. As a result, hackers had access to all pertinent information needed in order to make good use of those credit card accounts. With verification codes, account holders’ names, and specific account numbers, cyber thieves had plenty of ammunition for a major shopping spree.
5. Yale University: Not Above Reproach
The Ivy League school found itself a victim of a breach in security as well. Yale officials were not aware that Google made changes to its search engine. As a result of these modifications, FTP servers that were not made secure were open to attack. 43,000 individuals discovered that their social security numbers were revealed due to the weakness in security measures, once again providing easy access for cyber thieves. The breach affected staff associated with the college and students. Officials took steps to correct the problem. They also offered security monitoring to all those who fell prey to the gap in security. This courtesy was provided free of charge.
6. Google and the Aurora Attacks
Google fell prey to cyber intrusion when important, intellectual data of great value was stolen by unknown sources. Several other companies were victims at the same time. Fingers were pointed at China, yet no one could ever substantiate any claims. China denied any unquestionable activities. Google attempted to get around China’s censorship restrictions as a sign of protest. Eventually, the company buckled under pressure.
7. The McAfee Disaster
McAfee, well-known for producing anti-virus software to protect personal computers, made a major mistake when the company sent out a virus protection update that was malfunctioning. As a result, countless McAfee customers found themselves with computers that appeared to crash. While McAfee bent over backward to correct the situation, their reputation was struck a severe blow.
8. The Goatse Security Fiasco
iPads suffered a serious attack when a group that coined the name, Goatse Security, revealed a security flaw in an app provided by AT&T. The result: over 100,000 email addresses were released, providing personal information to dishonest individuals. At&T and Apple had to scramble for damage control, but it was too late to restore the confidence of many consumers.
9. Trouble at South Shore Hospital
A Massachusetts hospital found itself in hot water when it revealed the loss of nearly a million health records, ironic for an establishment that is devoted to helping and protecting others. Lost information included financial data as well as health records. Victims of the disaster included not only patients, but employees, and business particulars as well. Only upon the Massachusetts Attorney General’s insistence did the hospital follow up by contacting all parties that were affected by this extreme breach in security.
10. Major Wikileaks
Wikileaks is a site that specializes in sharing information that would best be left private, exposing important information from sources around the globe. One of its most notorious attacks was the theft of over a quarter of a million communications from the United States state department. The contents of messages from high-ranking officials and leaders were revealed for all of the worlds to see.
Hillary Clinton was Secretary of State at the time and found herself in the unfortunate position of being the one to announce the severity of the attack, as well as apologizing to individuals of importance from around the world. While it was not due to any fault on the part of the United State, it was still a major breach in security, revealing some information that was less than favorable about other countries, weakening the United States’ position in some eyes. Wikileaks took a great deal of heat and demanded censure but made no apologies or change in tactics. Some countries blocked the site as a showing of disapproval.
How Can We Avoid and Prevent Security Breaches?
In a world that is changing at an incredibly fast pace due to technological advances, security is more of an issue than ever before. Cybercriminals are getting smarter, what with a young generation that eats, sleeps, and breathes technology. Kids are growing up, able to do amazing things at the click of a button.
There’s no doubt that we are raising a society of computer-savvy individuals. Businesses and governments need to make a point of hiring the very best to provide them with excellence in security. They’re the best bet? Put the hackers on the payroll, exposing all areas of weakness and working together with experts to make a system that is invincible in order to avoid the next cyber disaster to hit the airwaves.
- Apps and Privacy
- Your Smart Phone Security
- 10 Free Online Tools for Security Careers
- Ultimate Guide to Security Careers
- Top 10 Highest-Paying Security Careers