Hackers, it turns out, are looking to bring the mayhem with the least amount of work necessary. For many of them, according to a new report from Homeland Security, finding the easy way into a company's database often includes using apps that grant remote access to employees and vendors.
According to the report, hackers scan for remote access apps, use high-speed programs to determine an individual's log-in information, and off they go.
"As we start to make more secure software and systems, the weakest link in the information chain is the human that sits on the end — the weak password they type in, the click on the email from the contact they trust," Vincent Berq of FlowTraq, a network security firm, told The New York Times.
According to Verizon's 2014 Data Breach Investigations Report (DBIR), there were 1,300 confirmed data breaches across all industries in 2013 with 148 incidents of data loss in retail. Chains including Target, Neiman Marcus, Michaels, Schnucks and Raley's were among those who saw their security breached.
Hackers stole more than 175 million customer records between April and June this year, according to a new SafeNet report. Of those, 145 million were a result of retail industry breaches. Last week, reports surfaced that Goodwill Industries was investigating the theft of customers' credit card data.
How well trained are employees and vendor representatives about avoiding having their log-in stolen by hackers?