4 Major Breaches in 2020 and How They Could Have Been Mitigated (Part 3)

Jan 27, 2021 / by SecureCloudDB

2020 will go down in infamy for many reasons, but as millions of people have struggled with a pandemic throughout the past year, organizations have had their own crises to deal with. With more activity in the cloud than ever before, data breaches have affected everyone from small businesses to behemoths. In this four part series, we look back on notable breaches from 2020 and discuss how SecureCloudDB could have been employed as part of a layered defense strategy to alleviate, if not prevent, incidents like them.   

Part three below covers the Garmin breach that occurred in July of 2020.

$10 Million Ransom

Mid-2020, Garmin fell victim to a ransomware attack, in which their systems were locked down. This caused an outage for Garmin’s global positioning devices leaving everyone from individual consumers to governments and enterprise organizations with little to no navigation capabilities for multiple days. Unable to recover any backups and left with no other option Garmin reportedly paid its attackers $10 million dollars to recover their systems. 

 

How SecureCloudDB Can Help - Database Activity Monitoring

Without activity monitoring, organizations are unable to catch attackers within their inventory of services creating the perfect situation for a bad actor to disable backups, retrieve a copy for themselves, and wait until previous backups expire to mount their attack.

Thinking that the system is locked down and secure isn’t enough anymore. Organizations need to assume that their environment is compromised at all times. SecureCloudDB's Database Activity Monitoring ensures that cloud databases are protected at all times, helping identify anomalous behavior by monitoring Insert, Modify, or Delete actions.

SecureCloudDB Database Activity Monitoring

SecureCloudDB Database Activity Monitoring accessible by selecting "Operational Security" in the main menu, 'Inventory" in the submenu, then "Database Activity by Database".

 

Protecting Data At the Source Has Never Been More Critical

We all want to believe that our environment is impenetrable, but history has shown that no organization is immune from threats. Whether it’s poorly configured databases, weak passwords/encryption or a rogue employee, events have shown us that being ahead of the threat is key to countering it. Failure to combat an attack no matter how small can lead to outages as well as financial and reputational consequences.

The monitoring and assessment of database environments is crucial. With SecureCloudDB, putting safeguards in place to help prevent public cloud database breaches in 2021 and beyond has never been easier.

 

Look for part one of this series where we go over the Estée Lauder breach; part two where we review the Microsoft breach; and part four where we discuss Shopify’s internal employee breach.

 


 

New to SecureCloudDB? Sign up for a demo or free trial today. Already a partner or customer? Contact your SecureCloudDB representative to discuss how we can help make your experience even better. Plus, learn more about the complexities and best practices of protecting data in public cloud databases from ransomware attacks in our white paper Ransomware and The Cloud.

SCDB - Ransomware White Paper 2.3.20

 

Tags: Data Breaches, ransomware

Written by SecureCloudDB