Attacks/Breaches
4/4/2012
10:28 AM
Connect Directly
RSS
E-Mail
50%
50%
Repost This

9 Recent Data Breaches That Have Cost Financial Services Firms Big-Time

The details of these breaches are downright scary, or ingenious, depending on your point of view

Data breaches are no joke. Just ask any chief security officer. In addition to the bad headlines, customer churn and regulatory headaches associated with data breaches, the monetary costs can add up quickly. Until the Mastercard and Visa hack, the most recent high-profile data breaches have hit largely outside of the financial services industry, with Sony, Michael’s Stores and RSA (which cost parent company EMC close to $66 million) grabbing most of the headlines.

Despite the focus on other industries, though, financial services continues to be a top target for data breaches, caused by hacks, card scams, insider data theft, and the loss of a portable device that contains financial or private information.

And the details of the data breaches are downright scary, or ingenious, depending on your point of view. Here are 9 of the largest most recent financial services data breaches.

Read the full article here.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Latest Comment: LOL.
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6213
Published: 2014-04-19
Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 Patch 1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1833.

CVE-2013-6214
Published: 2014-04-19
Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 9.05, 10.01, and 10.10 allows remote authenticated users to obtain sensitive information via unknown vectors, aka ZDI-CAN-2042.

CVE-2014-0778
Published: 2014-04-19
The TCPUploader module in Progea Movicon 11.4 before 11.4.1150 allows remote attackers to obtain potentially sensitive version information via network traffic to TCP port 10651.

CVE-2014-1974
Published: 2014-04-19
Directory traversal vulnerability in LYSESOFT AndExplorer before 20140403 and AndExplorerPro before 20140405 allows attackers to overwrite or create arbitrary files via unspecified vectors.

CVE-2014-1983
Published: 2014-04-19
Unspecified vulnerability in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to cause a denial of service (CPU consumption) via unknown vectors.

Best of the Web