Intelligent CISO Issue 1 - Page 24

threat updates USA In early 2018 the California Department of Fish and Wildlife sent out a message within the organisation notifying the employees of an incident involving personal data theft. Following the discovery of the breach, the organisation conducted a two-month investigation. A former employee of the department uploaded the personal data of 2,300 colleagues, as well as contractors, to his personal portable device and took it outside of the corporate network. SWITZERLAND Swisscom mobile network has acknowledged that the personal data of about 800,000 clients (or every tenth Swiss citizen) was compromised. The incident was discovered during a routine check. Representatives of Swisscom announced that the violators used the access rights of a sales partner. The company also reported on changes to the IS policy: access control was improved, numerous customer data requests at one session were disallowed and two-factor authentication for partners to access the data was introduced. 24 Issue 01 | www.intelligentciso.com