Infrastructures Are More Vulnerable Than Ever in 2020

August 24, 2020

Throughout 2020, there have been some pretty significant news stories taking up the global consciousness. With many economic and industry leaders focused on the coronavirus pandemic and a rapidly growing national recession, security and data management infrastructures are more vulnerable.

 

Increased Vulnerability

With attention and focus on other areas of consideration, threats and hackers have found it easier to access private and secure data. This unprotected access is in addition to other external and ongoing factors that were already poised to increase data vulnerability this year, including:

  • A growing digital society that relies on the sharing and communication of personal data, which only creates more gaps for potential threats.
  • A steady shift to AI and machine learning across multiple industries, creating entirely new use cases and workflows for InfoSec teams to figure out security protocols for.
  • An increase in personal health and medical data being stored on cloud-based devices and platforms. Medical data is consistently considered a highly vulnerable set of protected information and is often targeted by threats.

 

Notable Data Breaches in 2020

If, like many Americans, your attention has been drawn to other news stories over the last few months, don’t be fooled into thinking that InfoSec breaches and hackers have taken the year off. In fact, 2020 has been one of the most volatile and vulnerable years for information security on record.

As of August 2020, here are some notable data breaches that have already happened this year:

  • The breach of SafetyDetectives, a security research firm, which resulted in the leak of more than 76,000 fingerprints from an unsecured server.
  • An unprotected publishing of more than 280 million Microsoft customer records, including email and IP addresses.
  • A data breach at Fifth Third Bank, which exposed an undisclosed number of social security numbers, phone numbers, and other personal data.
  • The reported leak of more than 280,000 General Electric employee records, which included personal identification data, caused by a third-party vendor breach.
  • One connecting factor in the breaches that have happened in 2020? An unsecured and unsupported vendor risk management strategy.

 

How Vendor Risk Management Can Help

Looking at the breaches that have already occurred in 2020 and understanding the increased risk of an uncertain and unsettled global environment, it's natural for InfoSec professionals to be worried about the rest of the year. Fortunately, there is a proactive way to address the issues at hand while setting your security infrastructure up for success over the next few months.

Establishing a credible, scalable vendor risk management infrastructure means working with top thought leaders and InfoSec resources to create an accessible, flexible process without risk. With the Whistic Security Profile, InfoSec teams can securely share and confirm security protocols and infrastructure requirements with vendors to establish compliance and compatibility early on in the sales or partnership process. Then, as data is shared and connections are made between organizations, there is less risk throughout the ongoing partnership.

You can learn more about the Whistic Security Profile and how to keep your organization secure during 2020 here.

vendor risk management security third party risk data breach vendor security review proactive vendor security

About the author

Whistic
Whistic

The latest insights and updates on information security and third party risk management.

Hate security reviews?
Want FREE AirPods?*

Offer valid for any decision-maker/influencer in relation to your company’s third-party risk management strategy. Company size must exceed 100 employees. Exclusions apply. Limit 1 pair per company.

Close