The year 2021 broke a record for data leaks in companies . It was the largest number of digital privacy violations in Brazilian history. This significant number of data leaks is a clear sign that the worst is yet to come .
Among the possible analyzes of the record breach of data privacy, two are frightening: the growth in the number of virtual threats and the greater risk of data leaks in companies from 2022 onwards .
The year started with a monster leak: 223 million CPFs were put up for sale on the deep web .
To attract buyers, part of this data was exposed on various websites. The security incident – which even included personal data of deceased people –, as announced by the dfndr lab (laboratory specializing in cybersecurity) on January 19, 2021.
It was just the beginning. At least two other major incidents exposed the personal, sensitive data and social records of Brazilians. In addition to the 223 million CPFs, we have 270 million Dataprev records and another 100 million cell phone numbers .
What to do to avoid inconvenience and losses
Even though they do not always originate from the action of hackers and malicious attacks , cybersecurity threats in companies, however, always cause a lot of inconvenience and damage .
Although the human factor is a key element , it is companies that are responsible for data leaks .
A common circumstance – much more than recommended – when companies do not invest in managing and controlling internet access .
Therefore, it is the responsibility of companies to treat personal data under their custody in accordance with the LGPD ANPD standards and guidelines .
Therefore, in addition to technological solutions and information security systems , they must also invest in raising awareness and training employees .
Data leak of ALL Brazilians
Understand a little more about the data leak that “exposed personal data of all Brazilians” . On video, it is easier to see that this monster data leak will still cause a lot of issues and headaches.
It confirms the information and warnings about data leaks in companies in our most recent articles:
- Data leaks are a sure loss for companies
- Data leaks in companies: the human factor is a key element
- How to identify data leaks in your company
- Data leak in the company! What to do?
- Dos and Don'ts for Employee Data Leakage
The video Data Leak of ALL Brazilians: How did hackers do it? What to do? (17:10), from the Veslasoft , is presented by the master in Computer Science Filipe Alves .
Data leaks in the company: understand the size of the problem
The leak of personal data of 223 million Brazilians will lead to an exponential increase in the number of cyber frauds in Brazil .
Digital security experts estimate that the effects of this event will be felt for a long time. What leads them to understand the situation as very worrying is the extent and variety of information exposed .
See the list of data exposed and offered for sale from more than 223 million Brazilians , 40 million Brazilian companies and 104 million vehicles :
- CPF
- Name
- Sex
- Date of birth
- marital status
- Adresses
- Telephone numbers
- Family relationships
- Vehicle data (plate, chassis number, fuel)
- Information on more than 40 million CNPJs (corporate name, business name and date of foundation)
- Details about Income Tax declarations
- Face photos
- INSS Benefits
- Public servant records information
- Education
- LinkedIn registrations
- Financial data (credit score, bounced checks and income, among others).
In the case of the personal data leak, 37 types of sensitive information were exposed .
In the case of companies, in addition to the CNPJ, corporate name, trade name and date of foundation (publicized free of charge), hackers sell 17 categories of data .
Ultimately, to make the seriousness of the situation clear, the various possible data crossings expand the reach of cybercriminals .
Which means that, from 2022 and in the coming years, cyber risks and threats will be dozens of times greater .
Therefore, it is worth warning: maximum attention to the security of personal data and the management and control of internet access in companies .
Monster data leak: just the beginning of the problem
A year later, this data breach is still unresolved and data continues to be sold . This is according to the article published now, in 2022, on the tecnoblog .
Among other information, it is not surprising that the volume and type of information leaked have inflated the “hacker market” .
“Cybercriminals are willing to pay, even if it is expensive, to acquire sensitive and personal data. This way, they can better identify their victims and carry out more sophisticated scams.”
This is one of the parts of the article that scares the most and serves as a warning . Without a doubt, business owners, IT professionals and managers of companies of all sizes on alert
data security issues :
- Ransomware attacks are an even greater threat. Leaked information makes it easier for criminal groups to invade business systems. “The possibilities are endless when you have a person’s life or a company’s history directly on your computer screen.”
- Data leaks in companies will increase. Mainly because data from working individuals is available. That is, through social engineering techniques, scams and virtual fraud, it is even easier for cybercriminals to compromise the security of companies through employees. “More leaks aimed at blackmail and public shaming – when sensitive information is exposed to damage a target’s reputation.”
The biggest data leak in Brazilian history is still active. Which indicates that risks and threats to data security in companies are likely to intensify.
If you want to access the full article, click here .
Understand: preventing data leaks in the company is the best solution
Above all, the message that remains is that companies must invest in prevention against cyberattacks and security incidents .
Even more so now, after all, with the information available, the tendency is for cyberattacks to become more sophisticated, individualized and frequent .
Therefore, the best and most efficient way to minimize cyber risks and threats and comply with the General Personal Data Protection Law (LGPD) is to invest in solutions to prevent information security incidents .
As a result, only benefits and advantages: avoiding financial losses and, above all, protecting the image and reputation of your company .
Since employees are the main entry point for cyber attacks . It is urgent that companies structure and implement data security and internet access management and control policies.
Training and empowering employees is just as relevant as investing in information security solutions, technologies and systems .
Preventing data leakage in the company is possible, affordable and simple. Simply adopt prevention measures against cyberattacks and security incidents .
Prevention and information are keywords against security incidents
Learning and being informed about data leaks to act preventatively helps to reduce damage, avoid losses and preserve your company's reputation .
Internet access management and control processes do not need to be difficult or complex. Investing in solutions to prevent information security incidents is the most affordable and intelligent strategy.
It is essential to act in accordance with legislation ( LGPD ) to guarantee privacy rights and preserve the security of personal data of users/consumers/citizens .
In practice, in addition to prevention , the best solutions on the market offer even more benefits. productivity and profitability indicators . Just search and compare.
Subscribe to our newsletter and receive more news and materials.