Welcome to Cyber Insights. In this edition we highlight the scams that often surround Amazon Prime Day, share the latest security breaches and provide our top cybersecurity tips for the month.
Exploit: Insider Risk (Employee Error)
Risk to Business: Severe
State insurer iCare is in the hot seat after an employee mistakenly shared the details of almost 200,000 injured workers with 587 employers and insurance brokers after sending the incorrect cost of claims analysis reports to the wrong recipients. The employee information was contained in spreadsheets that were mistakenly sent as attachments to the wrong employers. The company sent impacted workers an apology for the incident in May 2022.
Risk to Individual: Severe
The missent cost of claims reports included a summary of workers’ claims history, their name, date of birth and injury category, workers’ policy number, a breakdown of weekly payments, claim costs and gross amounts paid, but no banking or contact details.
Read more about the security breach here >>
When signing into a website such as Facebook or Amazon, have you ever seen the beginning of the URL change from “HTTP” to “HTTPS”? How about a small lock icon at the top of your browser? The “S” in “HTTPS” stands for “secure” and indicates that your web browser is accessing the website through a secure connection that no one else can access. The lock icon also shows that the website is secured with a digital certificate.
However, a website is not necessarily secure just because “HTTPS” is included in the URL. A website using HTTPS can be safer than a website using HTTP, but cybercriminals can get HTTPS certificates, too. Cybercriminals often use HTTPS URLs to trick unsuspecting victims into clicking phishing links.
HTTPS websites can offer a false sense of security, so you may be tempted to automatically trust them. However, it’s important to remember that even legitimate HTTPS websites may have vulnerabilities that cybercriminals can exploit. Therefore, you should never rely on an HTTPS URL or even the lock icon at the top of your browser for security.
Tips to Stay Safe
Follow the tips below to make sure the website you’re visiting is secure: