Detailed guidance on creating a comprehensive data breach response plan tailored to your organization. Articles address risk assessment, stakeholder coordination, forensic investigation steps, and recovery procedures to restore operations quickly.
posts
In May 2023, MOVEit Transfer suffered a mass exploitation that ultimately affected over 2,700 organizations and exposed data on roughly 95 million individuals. Some of those organizations had a tested data breach response plan ready to execute. Most didn't. The difference between the two groups wasn'
When MGM Resorts got hit in September 2023, the chaos lasted ten days. Hotel room keys stopped working. Slot machines went dark. Reservation systems crashed. The estimated cost topped $100 million. And here's the part that stings — the initial compromise reportedly started with a social engineering call to
Marriott Had 383 Million Records Exposed — And No Clear Playbook When Marriott disclosed its massive breach in 2018, the company revealed that attackers had been inside Starwood's reservation system since 2014 — four years of undetected access to 383 million guest records. The breach cost Marriott over $28 million
When SolarWinds disclosed in December 2020 that threat actors had compromised their Orion software update mechanism — infiltrating roughly 18,000 customer networks including multiple U.S. government agencies — the breach didn't just expose data. It exposed how many organizations had no real data breach response plan in place.
The Breach Already Happened — Now What? In March 2023, Latitude Financial discovered a threat actor had accessed 14 million customer records — driver's license numbers, passport copies, financial statements. Their initial disclosure said 328,000 records. Within weeks, that number ballooned to 14 million. The company didn't
