{"id":4017,"date":"2019-07-30T11:02:28","date_gmt":"2019-07-30T15:02:28","guid":{"rendered":"https:\/\/solutionsreview.com\/endpoint-security\/?p=4017"},"modified":"2019-07-30T11:02:28","modified_gmt":"2019-07-30T15:02:28","slug":"expert-commentary-on-the-capital-one-data-breach","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/","title":{"rendered":"Expert Commentary on the Capital One Data Breach"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3181\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\" alt=\"Expert Commentary on the Capital One Data Breach\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg 800w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Today, the cybersecurity world became rocked once again in the wake of a new devastating data breach. This time, it was Capital One\u2014major bank and credit card financial services provider. According to authorities\u2019 allegations, a disgruntled third-party employee used her access to compromised 100 million credit card applications.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Additionally, this employee allegedly managed to compromise thousands of Social Security Numbers and bank account numbers. Moreover, she allegedly dwelt on the network for well over a decade before Capital One discovered the breach.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"#\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/01\/endpoint-security-speedbump-cta.jpg\" alt=\"Download Link to Endpoint Security Buyer's Guide\" width=\"800\" height=\"225\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">This breach raises new questions about cybersecurity and identity, access, the digital perimeter, and the dangers of insider threats. We could go into detail on all of these subjects and how they relate to <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">endpoint security<\/a>. However, we decided to call in the experts from both <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">endpoint security<\/a> and identity management to hear their perspectives.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Let\u2019s dive in!\u00a0<\/span><\/p>\n<h2 style=\"text-align: justify\"><b>Expert Commentary on the Capital One Data Breach\u00a0<\/b><\/h2>\n<h3 style=\"text-align: justify\"><b>Tom Kellermann, Chief Cybersecurity Officer, <\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.carbonblack.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><b>Carbon Black<\/b><\/a><\/span><b>:\u00a0<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">This breach highlights a few important realities for cybersecurity in 2019. First, perimeter-based security measures will not prevent 100% of attacks, 100% of the time. Without visibility into what\u2019s occurring on an enterprise, a business may be completely blind to attacks like this, especially when you consider that Paige Thompson once worked at Amazon as an engineer for the same server business that supported Capital One. Modern threats come can come from all domains, including former employees, partners or contractors. A business needs to consider all the potential risks and work to gain visibility across the business into where potential weaknesses exist.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Second, it\u2019s absolutely imperative for businesses to secure their cloud infrastructures and the critical data they hold. Capital One is one of the most \u201ccloud-forward\u201d financial companies in the world; they should be partnering with solution providers who are intimately aware of how to keep the cloud secure.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">What should not be lost in this is that Capital One is one of the globe\u2019s most recognizable and ubiquitous financial brands that houses critical financial and personal information. As Carbon Black\u2019s research has found, financial institutions are increasingly being targeted by advanced attacks that leverage \u201cisland hopping,\u201d lateral movement, counter incident response and fileless attacks. The modern bank heist is now in cyberspace.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Capital One customers who are concerned about this breach should keep a close eye on their statements and report any suspicious activity immediately. Customers should also consider signing up for security alerts from Capital One; they should be extra vigilant over the coming months for possible phishing emails.<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Giora Omer, Head of Security Architecture,<\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.panorays.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"> <b>Panorays<\/b><\/a><\/span><span style=\"font-weight: 400\">:\u00a0<\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">An interesting aspect to consider in this breach is that Capital One also serves as a supplier for businesses. It has an outstanding security team and the highest standards and methodologies in cybersecurity, particularly in the cloud.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Therefore, this breach illustrates how every company is vulnerable \u2013 it could be a large, small, critical or low-risk supplier. Companies working with suppliers need to make sure of the security standards put in place at the consumer, the type of data that they are sharing with that supplier and how to mitigate risk in case the supplier is breached. Hopefully for Capital One, the different controls put in place, including bounty programs and tokenizing sensitive data, will prevent this breach from becoming \u201cEquifax 2.\u201d<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Felix Rosbach, Product Manager,<\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.comforte.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"> <b>comforte AG:<\/b><\/a><\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The risk of a breach is higher than ever before for financial institutions. Those breaches create a lot of stress on both the issuer\u2019s side and on consumers; fraud is easy to commit with stolen account information. Classic defense like firewalls only protect you from known attack methods and often fail when it comes to insider threats.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">It\u2019s crucial to protect sensitive data over the entire data lifecycle. A lot of organizations use classic encryption to do that. While Capital One stated that they are encrypting their data as a standard, \u201cparticular circumstances\u201d enabled the decrypting of data. Due to complex key management and the fact that keys can be shared or exposed, classic encryption can fail.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Fortunately, Capital One used tokenization to protect social security numbers and account numbers. As this is a different approach to data security &#8211; ideally not involving the distribution of keys &#8211; the tokenized data remained protected. However, recent tokenization technology could have been used to protect not only social security numbers and account numbers but also personal information, customer status data, and transaction data.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Implementing data-centric security, which means protecting data at the earliest possible point and de-protecting it only when absolutely necessary, is the only way forward. Acquirers, merchants, and issuers should only use tokens instead of clear-text data to process payments and store sensitive data. If hackers get access to these tokens, the data is useless. This also reduces stress on both sides, for businesses and consumers.<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Colin Bastable, CEO,<\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.lucysecurity.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"> <b>Lucy Security<\/b><\/a><\/span><span style=\"font-weight: 400\">:\u00a0<\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">At last, tokenization is deployed, doing what it is supposed to do. Good job, Capital One, more please!<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">But, what\u2019s in your inbox? Capital One victims are going to be phished for years to come \u2013 long after the cliched 12 month\u2019s credit monitoring is done. So they and their employers should learn how to spot a phishing attack. The Dark Web probably knows more about most people in North America than their governments will publicly admit to. Employers need to protect themselves by ensuring that their employees are security-aware.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Hackers are more motivated to attack than defenders are to defend &#8212; playing defense is a continuous and often thankless task, but breaching defenses is an intellectual, tactical and strategic victory.\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Laurence Pitt, Global Security Strategy Director, <\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.juniper.net\/\" target=\"_blank\" rel=\"noopener noreferrer\"><b>Juniper Networks<\/b><\/a><\/span><b>:\u00a0<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">This is a real wow \u2013 and very worrying. Malicious insiders are a huge risk to any organization. Someone who is unhappy can be subverted for either money or simply to cause damage and disrupt business systems. The alleged hacker had previously worked for Amazon, and accessed Capital One servers rented from AWS. This would seem to indicate that she either knew of a weakness in AWS and took advantage (unlikely) or retained access to AWS cloud in a way that allowed her to gain access to the Capital One systems. This latter would still be a complex hack though as I\u2019m sure that C1 would be using multiple factors to authenticate including tokens or SMS messaging codes.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The bottom line is that anyone can become malicious if they are unhappy; any organization which grants high-levels of access rights to their systems also needs a process which can simply and quickly revoke said rights. We often hear about zero-day start processes which ensure that a new-starter has a laptop, phone, email, and ability to work as soon as they join. How about ensuring that they also have zero-day stop too? Meaning that all systems access can be audited and revoked fast when someone either leaves, or is removed, from their employment.<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"hr hr\"><\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Thank you to our endpoint security and identity management experts for their time and expertise! To learn more about protecting your data, you should check out our <a href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">2019 Endpoint Security Buyer\u2019s Guide<\/a>! We cover the top solution providers in the field and their key capabilities!<\/span><\/p>\n<p><span style=\"font-weight: 400\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"#\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/free-endpoint-protection-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" src=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2019\/01\/endpoint-security-speedbump-cta.jpg\" alt=\"Download Link to Endpoint Security Buyer's Guide\" width=\"800\" height=\"225\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Today, the cybersecurity world became rocked once again in the wake of a new devastating data breach. This time, it was Capital One\u2014major bank and credit card financial services provider. According to authorities\u2019 allegations, a disgruntled third-party employee used her access to compromised 100 million credit card applications.\u00a0 Additionally, this employee allegedly managed to compromise [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3181,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[2,335],"tags":[31,1066,162,75,83,22,13,40,161,408,1063,1065,84],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Expert Commentary on the Capital One Data Breach<\/title>\n<meta name=\"description\" content=\"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here&#039;s what we learned.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Expert Commentary on the Capital One Data Breach\" \/>\n<meta property=\"og:description\" content=\"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here&#039;s what we learned.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/solutionsreview\" \/>\n<meta property=\"article:published_time\" content=\"2019-07-30T15:02:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:site\" content=\"@InfoSec_Review\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\"},\"author\":{\"name\":\"Ben Canner\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"headline\":\"Expert Commentary on the Capital One Data Breach\",\"datePublished\":\"2019-07-30T15:02:28+00:00\",\"dateModified\":\"2019-07-30T15:02:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\"},\"wordCount\":1209,\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\",\"keywords\":[\"Best Practices\",\"Capital One\",\"Carbon Black\",\"Cybersecurity\",\"Data Breaches\",\"Endpoint Protection\",\"Endpoint Security\",\"EPP\",\"Infosec\",\"Juniper Networks\",\"Lucy Security\",\"Panorays\",\"Security\"],\"articleSection\":[\"Best Practices\",\"Featured\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\",\"name\":\"Expert Commentary on the Capital One Data Breach\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\",\"datePublished\":\"2019-07-30T15:02:28+00:00\",\"dateModified\":\"2019-07-30T15:02:28+00:00\",\"description\":\"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here's what we learned.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Tessian Study Uncovers Extent of Human Error in Cybersecurity\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/endpoint-security\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Expert Commentary on the Capital One Data Breach\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#website\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"name\":\"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors\",\"description\":\"All the Latest News, Best Practices and Buyer&#039;s Guides for Endpoint Security and Protection\",\"publisher\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#organization\",\"name\":\"Solutions Review\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"contentUrl\":\"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png\",\"width\":200,\"height\":200,\"caption\":\"Solutions Review\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/solutionsreview\",\"https:\/\/x.com\/InfoSec_Review\",\"https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review\",\"https:\/\/www.youtube.com\/user\/SolutionsReview\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/endpoint-security\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Expert Commentary on the Capital One Data Breach","description":"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here's what we learned.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/","og_locale":"en_US","og_type":"article","og_title":"Expert Commentary on the Capital One Data Breach","og_description":"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here's what we learned.","og_url":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/","og_site_name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors","article_publisher":"https:\/\/www.facebook.com\/solutionsreview","article_published_time":"2019-07-30T15:02:28+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_card":"summary_large_image","twitter_creator":"@InfoSec_Review","twitter_site":"@InfoSec_Review","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#article","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/"},"author":{"name":"Ben Canner","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"headline":"Expert Commentary on the Capital One Data Breach","datePublished":"2019-07-30T15:02:28+00:00","dateModified":"2019-07-30T15:02:28+00:00","mainEntityOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/"},"wordCount":1209,"publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg","keywords":["Best Practices","Capital One","Carbon Black","Cybersecurity","Data Breaches","Endpoint Protection","Endpoint Security","EPP","Infosec","Juniper Networks","Lucy Security","Panorays","Security"],"articleSection":["Best Practices","Featured"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/","name":"Expert Commentary on the Capital One Data Breach","isPartOf":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg","datePublished":"2019-07-30T15:02:28+00:00","dateModified":"2019-07-30T15:02:28+00:00","description":"We contacted experts in endpoint security and identity management for thier thoughts on the Capital One Data breach. Here's what we learned.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#primaryimage","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2018\/08\/IAM-CEO-mod.jpg","width":800,"height":400,"caption":"Tessian Study Uncovers Extent of Human Error in Cybersecurity"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/endpoint-security\/expert-commentary-on-the-capital-one-data-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/endpoint-security\/"},{"@type":"ListItem","position":2,"name":"Expert Commentary on the Capital One Data Breach"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#website","url":"https:\/\/solutionsreview.com\/endpoint-security\/","name":"Best Endpoint Protection Security (EPP) Tools, Software, Solutions &amp; Vendors","description":"All the Latest News, Best Practices and Buyer&#039;s Guides for Endpoint Security and Protection","publisher":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/endpoint-security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#organization","name":"Solutions Review","url":"https:\/\/solutionsreview.com\/endpoint-security\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/","url":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","contentUrl":"https:\/\/solutionsreview.com\/endpoint-security\/files\/2016\/05\/SR_Icon.png","width":200,"height":200,"caption":"Solutions Review"},"image":{"@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/solutionsreview","https:\/\/x.com\/InfoSec_Review","https:\/\/www.linkedin.com\/company\/cyber-security-solutions-review","https:\/\/www.youtube.com\/user\/SolutionsReview"]},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/endpoint-security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/endpoint-security\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/4017"}],"collection":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/comments?post=4017"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/posts\/4017\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media\/3181"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/media?parent=4017"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/categories?post=4017"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/endpoint-security\/wp-json\/wp\/v2\/tags?post=4017"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}