third-party risks
-
Farmers Insurance says 1.1 million customers affected by data breach tied to Salesforce attack wave
Farmers Insurance says 1.1 million customers were affected by a data breach at a third‑party vendor, tied to a broader Salesforce data‑theft campaign. The incident exposed names, addresses, birth dates, driver’s licenses, and last‑four digits of SSNs, with notices issued starting in August and Maine officials confirming more than 1.1 million total affected across notices.
-
Nearly 1 Million Health Records Exposed in Ohio Medical Alliance Data Breach
Cybersecurity researchers say two unprotected databases linked to Ohio Medical Alliance exposed 957,434 patient records, including SSNs and driver’s-license images, in a breach that required immediate remediation and raises privacy and identity-theft concerns in the medical marijuana sector.
-
Workday says data breach tied to Salesforce-related social engineering campaign, broader breach wave observed
Workday disclosed a data breach after attackers gained access to a third-party CRM platform via a social engineering campaign. While customer tenants were not affected, some business contact information was exposed. The incident appears linked to a broader Salesforce data-theft campaign attributed to the ShinyHunters group, with Workday noting the discovery on August 6.
-
Adidas Reports Data Breach Following Hack of Customer Service Provider
Adidas has disclosed a data breach after attackers exploited a vulnerability in a third-party customer service provider, exposing customer contact data. The company has launched an investigation and is notifying affected consumers.
-
Rising Threats in Supply Chain Security Demand Increased Vigilance and Strategy
As cyber adversaries infiltrate software and hardware supply chains, organizations must enhance their cybersecurity strategies, focusing on continuous monitoring and the use of advanced tools like Software Bill of Materials and artificial intelligence to combat emerging threats.
-
Navigating Third-Party Vendor Risks: Strategies for CISOs
With third-party vendors becoming vital to business operations, Chief Information Security Officers must assess and mitigate associated risks to safeguard sensitive data. The strategies outlined emphasize the need for comprehensive vendor evaluations and collaborative relationships.
