On October 1, Experian admitted full responsibility for the loss of T-Mobile customer data. 15 million user records dating back to 2013 were effected in the data breach, with data including sensitive information that may be decryptable like social security numbers and drivers licenses. The news articles say it all. What is terrifying about this breach is not the shear volume of data stolen – we have seen this before – but the amount of time it took to steal it all. A whopping two days! The breach occurred approximately two weeks ago and was detected within two days. The fault was promptly secured but the damage was done in a very short timeframe even with extensive forensics to determine the scope.
Considering that many recent breaches occurred over the course of months or even years, it is refreshing to see that this breach was identified so quickly, and even more encouraging that Experian has taken full ownership of the breach. The problem is that even after two days, detection was not fast enough to mitigate the loss. While details around how the data breach was conducted have not been released, we can only hope it was not as blatant as the poor security practices implemented by Target.
As a data aggregator, Experian truly has the "keys to the kingdom" for many individuals and this breach only emphasizes how important it is to secure sensitive information, encrypt the data, remediate vulnerabilities, and monitor for all privileged access to information.
As details become available, BeyondTrust will continue to monitor the breach and provide updates via our blogs and media outlets. If you have any questions on how BeyondTrust can help secure privileged access to sensitive data, please feel to contact us here.
Morey J. Haber, Chief Security Officer at BeyondTrust
Morey J. Haber is the Chief Security Officer at BeyondTrust. He has more than 25 years of IT industry experience and has authored three books: Privileged Attack Vectors, Asset Attack Vectors, and Identity Attack Vectors. He is a founding member of the industry group Transparency in Cyber, and in 2020 was elected to the Identity Defined Security Alliance (IDSA) Executive Advisory Board. Morey currently oversees BeyondTrust security and governance for corporate and cloud based solutions and regularly consults for global periodicals and media. He originally joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition where he served as a Product Owner and Solutions Engineer since 2004. Prior to eEye, he was Beta Development Manager for Computer Associates, Inc. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.