Data breaches hit Sears and Delta Air Lines

With a large number of cybersecurity incidents happening recently, it is clear that no organization is immune to data breaches.

On Wednesday, Sears Holding Corporation and Delta Air Lines were both hit by data breaches stemming from a mutual software service provider, [24]7.ai. It is worth noting that this technology firm also provides online support services for other major corporations. The data breaches potentially exposed online customer payment information.

Key points

  • Sears believes that fewer than 100,000 customers were likely to be affected by the breach
  • Sears stated that the data breaches most likely occurred between September 27, 2017, and October 12, 2017
  • Sears will establish a hotline for its consumers
  • Delta said a small subset of its customers were affected
  • [24]7.ai says that it has secured its systems
  • [24]7.ai has also said that a website for concerned customers would be set up

Protect your organization and your customers’ personal data

With the sheer volume of high-profile data breaches in recent weeks, this breach reminds us yet again that customer data must be properly secured and stored. Organizations need to conduct regular information security audits to help prevent data breaches. Information security audits are an important part of a comprehensive information security management system (ISMS).

ISO 27001 is the international standard for a best-practice ISMS. Achieving ISO 27001 certification demonstrates that an organization has taken reasonable steps to protect its sensitive and confidential data.

Learn how to implement ISO 27001 and audit against its requirements

IT Governance’s ISO27001 Lead Implementer and Lead Auditor Combination Online course will guide you through the process of implementing an ISO 27001-compliant ISMS. You will gain an understanding of the activities needed to plan, implement, and maintain a best-practice ISMS.

Leaders in ISO 27001