Last month, credit reporting agency Equifax reported a data breach that exposed the personal data of more than 100 million consumers. This would be worrying enough on its, but perhaps the most alarming part of this story is the fact that the attack in question reportedly began back in May, but wasn't observed until late July.
Among the information affected by security breach were people's:
- Names
- Birth dates
- Addresses
- Card details
The fallout from this incident has been catastrophic for Equifax. A number of lawsuits have been filed against the company, and Equifax shares dropped by 13% the after the news broke. The breach is still being closely followed by media outlets internationally, and the former Equifax CEO Richard Smith has even appeared in front of the United States Congress.
All of this demonstrates yet again that information security is an absolutely critical concern for businesses in the 21st century. Even small enterprises should take data security very seriously, ideally implementing a strong information security management system (ISMS) and seeking ISO 27001 certification to ensure that robust security processes are in place.
If you are looking to achieve ISO 27001 certification, please contact NPT Management Systems today for expert advice and assistance with planning and implementing your ISMS.