• Reset

How did Slack lead to ‘Grand Theft Auto’ leak?

Gaming fans got an unexpected treat last weekend when in-development gameplay footage of the upcoming Grand Theft Auto (GTA) game was leaked online. No, this wasn’t an attempt by Rockstar Games—the publisher of GTA— to drum up anticipation for the pending launch.  The company was hacked. And badly. The hacker managed to break into an […]

read more

How did Uber’s Slack breach lead to leakage of database credentials?

Uber has been hacked by an 18 year old. Yep, you read that right. On the 15th September, tens of Uber employees received a Slack message from an unknown identity, stating “I am a hacker.”   But that’s just the tip of the iceberg. The threat actor’s self-announcement was the final step in a lengthy data […]

read more
LastPass data breach

I am a LastPass customer. Does the breach affect me?

Over the weekend, the popular password management tool, LastPass, published a blog post, letting its customers know that it suffered a data breach. Here’s everything you need to know. What’s LastPass? LastPass is a very well known security tool used by individuals and organizations alike to streamline password management.  Essentially, LastPass works by storing all […]

read more
Image of Twitter logo on mobile phone

5 lessons to be learned from Twitter whistleblower allegations

You’d think that a technology company as large and influential as Twitter would be hot on the case of data privacy and cyber security. Well, recent allegations claim the opposite is true.  This week, an 84-page whistleblower report hit the headlines, featuring damning allegations about Twitter’s security practices. This is a report with weight. It […]

read more
Microsoft OneDrive

How did russian hackers target Microsoft Office 365 accounts?

Background on Cozy Bear Cozy Bear is a Russian cyber-espionage group classified by the United States federal government as advanced persistent threat 29 (APT29).  It’s responsible for several high-profile data breaches over the last few years, including the SolarWinds attack and recent Google Drive phishing scams.  While APT29 is notorious in the public domain, the group’s infamy hasn’t […]

read more

How did Cisco get hacked?

Overview of the Cisco data breach  On Wednesday, August 10th, 2022, the networking giant, Cisco, confirmed that it suffered a data breach on 24th May of this year. Below, we’ll talk you through how the hack happened, what data was lost and who was responsible.  We’ll also discuss key learnings from the incident, so you […]

read more
prevent_dataleak_gdrive

How do Google Drive and Dropbox phishing scams work?

We all know what a traditional phishing scam is, where a cyber-criminal sends a fraudulent email to their victim in a bid to trick them into sharing sensitive information or downloading malware.  Phishing scams are so widespread that most email providers have now installed impressive features that block standard phishing emails. However, just because email […]

read more

Twilio data breach: What happened and lessons to be learned

Over the weekend, the US-founded communications company, Twilio, disclosed that it suffered a data breach, after some of its employees fell for a sophisticated phishing scam. Below, we’ll give you an overview of the security incident: what happened, who was impacted and how you can prevent the same thing happening in your organisation. Quick background: […]

read more
ccpa

CCPA: the enforcements so far

The California Consumer Privacy Act (“CCPA”) came into force in 2020 and, since then, plenty of organizations have received notifications from the California attorney general about their data security practices.  In this blog, we’ll take a look through some of the most recent enforcements, so that your company can make sure it doesn’t fall into […]

read more
Verizon DBIR 2022

Verizon’s 2022 data breach report: TL;DR version

TL;DR the Verizon Data Breach Investigation Report (DBIR) 2022 – 82% of breaches include Human Error. Train & Enforce Policy for your team.

read more
USAA cultural priority

Lessons from USAA: Why compliance must be a cultural priority 

USAA has been whacked with two compliance fines for failing to comply with anti-money laundering laws and insufficiently managing compliance risks

read more

Subscribe to Polymer blog