Watch Your Apps!

Welcome!

It's summer! Time to catch up on information, tips, and news to help keep you, your information and your business safe online.

If you have questions, or ideas you would like to see in the Newsletter, please send an email to BadWolf Support!

🌼🏖️🌼🖼️🌼✈️🌼🖼️🌼⛳️🌼🖼️🌼💳🌼🖼️🌼🔐🌼🖼️🌼🛍️🌼🖼️🌼🏡🌼

In the edition I have compiled news stories with a specific theme:

Data breaches very often are NOT one-offs:

  • Data breaches often happen in pairs, or triples, or...
  • Data breaches happen in many ways.
  • Watch the news and the updates for your specific apps!

If there is a breach in an app that you use, watch closely for follow-up news to make sure you know if the app was breached a 2nd or 3rd time.

Ask yourself where your security gaps might be.

🦆 Don't be a sitting duck! 🦆
Cyber criminals are ALWAYS watching

AND stay alert. Criminals are crafty... they know when we let our guard down.

📣
Security reminder: have you changed at least ONE password this week? 📆 . If not, why not take 5 minutes ⏱ right now and change just one? Don't forget to write the new info in your old school pen-and-paper list! 📝
🧰
Toolkit Resource of the Month: Check out the NEW Blonde Bad Wolf Resource page below! 🔐 😃 ⬇️

⭐️ In the News ⭐️

Cybersecurity is vital to every business, and includes the need to protect our businesses, clients, money, and reputation. ⬇️

🧰
Cyber risks are skyrocketing. The latest IBM Data Breach Report revealed that an alarming 83% of organizations experienced more than one data breach during 2022. According to the 2022 Verizon Data Breach Investigations Report, the total number of ransomware attacks surged by 13%, which is a rise equal to the last five years combined. More info from Harvard Business Review is below ⬇️
The Devastating Business Impacts of a Cyber Breach
Cybersecurity risks are becoming more systematic and more severe. Although the short-term impacts of a cyberattack on a business are quite severe, the long-term impacts can be even more important, such as the loss of competitive advantage, reduction in credit rating, and increase in cyber insurance…

Mailchimp: 2 attacks, 3 perspectives.

I have included 3 news stories for this topic, in order to showcase some of the realities that are possible when the word "breach" is used.

✳️
Computer Weekly (January 2023): "In April 2022, cryptocurrency companies including Bitcoin hardware wallet maker Trezor were targeted by phishing campaigns after a threat actor breached Mailchimp. This attack was also the result of malicious access to an internal customer support tool" TechCrunch (April 2022): "hackers viewed approximately 300 Mailchimp accounts, and successfully exported audience data from 102 of those, the company said. Mailchimp declined to say exactly what data was accessed but told TechCrunch that the hackers targeted customers in the cryptocurrency and finance sectors" Links are below ⬇️
Mailchimp suffers third breach in 12 months | Computer Weekly
Email marketing service Mailchimp has suffered its third data breach in a year, but has been praised for being open about its latest attack
Email marketing giant Mailchimp has confirmed a data breach
Email marketing giant Mailchimp said hackers targeted customers in the cryptocurrency and finance sectors.
✳️
January 2023: "On January 11, the Mailchimp Security team identified an unauthorized actor accessing one of our tools used by Mailchimp customer-facing teams for customer support and account administration. The unauthorized actor conducted a social engineering attack on Mailchimp employees and contractors, and obtained access to select Mailchimp accounts using employee credentials compromised in that attack. Based on our investigation to date, this targeted incident has been limited to 133 Mailchimp accounts. There is no evidence that this compromise affected Intuit systems or customer data beyond these Mailchimp accounts." ⬇️
Do Not Get Fooled Twice: Mailchimp’s Latest Breach Raises Alarm Bells – Protect Yourself Now!
For the second time in less than a year, Mailchimp has had to admit that it’s been breached. It appears that a social engineering attack tricked employees

⭐️ Stay safe! ⭐️