Dixons Carphone has admitted a huge data breach involving 5.9 million payment cards and 1.2 million personal data records.
Insight and commentary from Paul Edon, Technical Director (EMEA) at Tripwire:
Victims of the Dixons Carphone data breach should immediately change elements of their account security, such as passwords, as the moments after a data breach are when victims are most vulnerable.
Even though Dixons Carphone released a statement saying that there is ‘no evidence of cards being used fraudulently following the breach’, it is imperative that individuals continually monitor their bank accounts and report any signs of identity theft or fraudulent activity to their banks.
Financial information is a high commodity on the dark web and so it will be highly targeted by criminals. Most organisations understand the importance of having the appropriate security solutions in place but unfortunately, their ability or willingness to invest in the correlation and active monitoring of the output from these solutions reduces their ability to recognise the initial and ongoing security incidents that would otherwise alert them in a more timely manner to the potential breach.