The Capital One Data Breach and Vendor Cybersecurity Risks

Interesting podcast on the Capital One breach. I’ve been attempting to interest my clients in tools that monitor for their data being spread around, via their supply chain and/or unsecured shares and the dark web. Maybe tales like this one will increase the interest level…:

Capital One suffered a serious data breach as a result of the actions of one individual who downloaded nearly 30 GB of 100 million Capital One Financial Corporation credit applications from an Amazon cloud data server. The Capital One data breach underscores the risk of cyber breaches caused by a single bad actor who gained unauthorized access through Amazon’s could data server. This unfortunate data breach demonstrates the importance of managing data security risks through third parties (in this case a cloud vendor).

Read the original article here