In January 2022, the International Committee of the Red Cross disclosed that a sophisticated cyberattack compromised the personal data of more than 515,000 vulnerable people — including missing persons, detainees, and their families. The breach didn't happen because of some exotic zero-day exploit. It happened because of a
Marriott Had 383 Million Records Exposed — And No Clear Playbook When Marriott disclosed its massive breach in 2018, the company revealed that attackers had been inside Starwood's reservation system since 2014 — four years of undetected access to 383 million guest records. The breach cost Marriott over $28 million
The Breach Nobody Reported — Until It Was Too Late In 2020, the health insurer Anthem agreed to pay $39.5 million to settle claims with 43 state attorneys general over a 2015 data breach affecting nearly 79 million people. The breach itself was devastating. But the lawsuits and regulatory actions
In January 2022, the International Committee of the Red Cross disclosed that a sophisticated cyberattack compromised the personal data of more than 515,000 vulnerable people — including refugees, detainees, and missing persons. The attackers exploited an unpatched vulnerability in a single system. One missed update. Half a million of the
$4.24 Million Per Breach — and the Trajectory Is Ugly IBM's 2021 Cost of a Data Breach Report pegged the global average at $4.24 million per incident — the highest in 17 years of the study. That figure jumped 10% from the prior year. If you're
In January 2022, Broward Health in Florida disclosed a breach affecting 1.35 million patients — and they didn't discover the intrusion until months after the threat actor first gained access. The clock on notification didn't start ticking until they actually found it. That gap between compromise
The 61% Problem You're Probably Ignoring The 2021 Verizon Data Breach Investigations Report found that 61% of all breaches involved credential data. Not sophisticated zero-day exploits. Not nation-state malware. Stolen, weak, or reused passwords. That single statistic should reshape how your organization thinks about password security best practices
The 123456 Problem Is Worse Than You Think In December 2021, NordPass published its annual list of the most common passwords. Sitting at number one — for the third year running — was "123456." Number two? "123456789." These aren't passwords from 2005. They're passwords
The Breach That Started With "Company2019!" In January 2021, a security researcher discovered that a SolarWinds intern had used the password "solarwinds123" on a critical internal server. That detail, revealed during congressional hearings, became one of the most embarrassing footnotes in what was already one of
In January 2022, the Crypto.com breach exposed a brutal truth: 483 user accounts were compromised because the platform's existing two-factor authentication wasn't strong enough. Attackers bypassed it, drained roughly $34 million in cryptocurrency, and vanished. That incident sits at the extreme end, but the pattern
