2018: The Year of the Data Breach?

Data breaches in 2018 compromised the personal information of millions of people around the world.

Data breaches affect businesses of any size and can happen for a variety of reasons. Some companies are hacked. Data can be mishandled or sold to third parties. Holes in a website’s security system can leave information unprotected.

Five of the most significant data breaches of 2018: 

Image result for aadhar logo


Aadhar — 1.1 billion 

How it happened: A data leak on a system run by a state-owned utility company Indane.” Indane hadn’t secured their API, which is used to access the database, which gave anyone access to Aadhar information

Image result for marriott starwood logo


Marriott Starwood hotels — 500 million 

How it happened: Hackers accessed the reservation database for Marriott’s Starwood hotels, and copied and stole guest information.


Exactis — 340 million


How it happened: A security expert spotted a database “with pretty much every US citizen in it” left exposed “on a publicly accessible server,”although it’s unclear whether any hackers accessed the information.


MyFitnessPal — 150 million Image result for myfitnesspal logo

How it happened: An “unauthorized party” gained access to data from user accounts on MyFitnessPal, an Under Armour-owned fitness app.


Image result for quora logo

Quora — 100 million 

How it happened: A “malicious third party” accessed one of Quora’s systems.


Small businesses– make no mistake, you are absolutely a target as well. A recent survey of just over 1,000 small- and medium-sized businesses found that 58 percent of respondents experienced a data breach in the previous 12 months. An even larger number, 67 percent, said they experienced at least one form of cyber attack, the most common of which were phishing or social engineering schemes, web-based attacks and malware campaigns.

Understanding risk is the first component of protecting against it. A risk assessment is a fundamental component of organizational risk management. Risk assessments are designed to identify and inform decision makers of relevant threats that exist in company systems.