Worst Data Breaches of 2015

Worst Data Breaches of 2015

  • By Sydny Shepard
  • Dec 30, 2015

Big data breaches made national news in 2015 measured by a variety of criteria that range from amount of records stolen to the types of data stolen to the potential threat to the specific groups, such as children. Below is a list of some of the top hacks of 2015 with a summary of what was stolen, how and the impact the data breach caused.

Ashley Madison

This dating site for married people, with the tagline, “Life is short, have an affair.” had their whole database stolen. 37 million customer records including millions of account passwords made vulnerable by a bad MD5 hash implementation.

While it is unclear how they got in, they hackers where discovered on July 12. The hackers, called the Impact Team, pushed a screen to employees’ computers on login that announced the breach. The attackers then posted personal information of customers seeking extramarital affairs with other married persons, which led to a lot of embarrassment, and in two cases, possible suicides.

Office of Personnel Management

Multiple breaches at the U.S. government’s Office of Personnel Management over nearly a year led to the theft of data on 22 million current and former federal employees that included the fingerprints of about 5 million.

The hackers got into the system using a contractor’s stole credentials to plant a malware backdoor in the network. After going undetected for 343 days, anomalous SSL traffic and a decryption tool were observed within the network, leading to a forensic investigation.

This was big because it appeared to be a data mining operation – seeking data on individuals for intelligence purposes as opposed to data to be exploited for cash. The stolen personnel records include those for workers with classified employees holding sensitive jobs in law enforcement and intelligence.

Anthem

Anthem Blue Cross, a health insurance company, was hacked with personal data from about more than 80 million people compromised, resulting in one of the biggest data breaches of the year.

The hacker went undetected in the system for about nine months because a systems administrator noticed a legitimate account was querying internal databases but without the legitimate users’ knowledge.

This breach resulted in the largest number of records compromised in a healthcare network and bore the fingerprints of Deep Panda, a group known for breaking into technology, aerospace and energy firms as well as another health insurer, Premera.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • NRF Supports Federal Bill to Thwart Retail Crime

    The National Retail Federation recently announced its support for the Combating Organized Retail Crime Act of 2025. The act was introduced by Chairman Chuck Grassley, R-Iowa, Senator Catherine Cortez Masto, D-Nev., and Representative Dave Joyce, R-Ohio. Read Now

  • ISC West 2025 Brings Almost 29,000 Industry Professionals to Las Vegas

    ISC West 2025, organized by RX and in collaboration with the Security Industry Association, concluded at the Venetian Expo in Las Vegas last week. The nation’s leading comprehensive and converged security event attracted nearly 29,000 industry professionals and left a lasting impression on the global security community. Over five action-packed days, ISC West welcomed more than 19,000 attendees and featured 750 exhibiting brands. Read Now

    • Industry Events
    • ISC West

  • Tradeshow Work Can Be Fun

    While at ISC West last week, I ran into numerous friends and associates all of which was a pleasant experience. The first question always seemed to be, “How many does this make for you?” Read Now

    • Industry Events
    • ISC West

  • New Report Says 1 in 5 SMBs Would Be Forced to Shutter After Successful Cyberattack

    Small and medium-sized businesses (SMBs) play a crucial role in the U.S. economy, making up 99.9% of all businesses and contributing to half of the nation's GDP. However, these vital economic growth drivers face an escalating threat—cyberattacks that could put them out of business. Read Now

  • The Yellow Brick Road

    The road to and throughout Wednesday's and Thursday's ISC West was crowded but it was amazing. Read Now

    • Industry Events
    • ISC West
Most   Popular

New Products

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.