Capital One's breach was inevitable, because we did nothing after Equifax

[InfoSec News <alerts () infosecnews org>]

https://techcrunch.com/2019/07/29/capital-one-breach-was-inevitable/

By Zack Whittaker
TechCrunch.com
July 29, 2019

Another day, another massive data breach.

This time it's the financial giant and credit card issuer Capital One, which 
revealed on Monday a credit file breach affecting 100 million Americans and 6 
million Canadians. Consumers and small businesses affected are those who 
obtained one of the company’s credit cards dating back to 2005.

That includes names, addresses, phone numbers, dates of birth, self-reported 
income and more credit card application data -- including over 140,000 Social 
Security numbers in the U.S., and more than a million in Canada.

The FBI already has a suspect in custody. Seattle resident and software 
developer Paige A. Thompson, 33, was arrested and detained pending trial. She’s 
been accused of stealing data by breaching a web application firewall, which 
was supposed to protect it.

Sound familiar? It should. Just last week, credit rating giant Equifax settled 
for more than $575 million over a date breach it had -- and hid from the public 
for several months -- two years prior.

[...]

--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_