How do you perform on a test that checks if you can leak sensitive information such as US Social Security numbers?

How are we testing?:

This test checks if a set of numbers that match the format of valid United States Social Security numbers can be sent out from your network. Your network security infrastructure should easily identify these numbers as Social Security numbers.


Why is this test important?:

Personal information is often the target of criminals, who use it to commit theft and fraud. When a breach of personal information occurs, it can expose your organization to negative press attention, federal enforcement actions, lawsuits from customers whose information was compromised, and other legal actions. You may also be assessed sizable penalties if you fail to comply with the numerous, and sometimes contradictory, requirements of various regional laws governing data breaches. Costs incurred include the provision of fraud monitoring for 1 year or more and remediation services to consumers affected.


Take our security preview now

How Much Does a Data Leakage Cost You?

15% of documented data leakage incidents involve US Social Security numbers with the average cost of a data breach estimated at $188 per customer record in 2013. In 2014, the State of South Carolina revealed a massive breach of social security and credit card numbers. Source

In the News:

GOP data firm that exposed millions of Americans' personal information is facing its first class-action lawsuit - Business Insider

21 Jun 2017
It says that "as a direct and proximite cause of Deep Root's conduct," those exposed in the data breach may be vulnerable to identity theft and "a loss of privacy," and argue that the "actual damages" exceed $5 million. The exposed information did not ...

TheDarkOverlord leaks celebrity patient data from Beverly Hills provider - Healthcare IT News

21 Jun 2017
TheDarkOverlord leaks celebrity patient data from Beverly Hills provider. The notorious hacker has been ... For some, Social Security numbers were listed. ... At time of publication, there was no mention of the breach on Dougherty's website. And calls ...

Republican marketing firm leaks personal data of 200 million voters - ThinkProgress

19 Jun 2017
Cybersecurity problems aren't party loyal, but this is the second GOP-related breach of voter files. In 2015, presidential hopeful Jeb Bush accidentally released hundreds of thousands of voter emails, many of which contained private data, such as ...

More »

LEADERS SELECT LEADERS