{"id":4512,"date":"2019-07-30T10:06:02","date_gmt":"2019-07-30T14:06:02","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=4512"},"modified":"2019-08-15T11:56:00","modified_gmt":"2019-08-15T15:56:00","slug":"capital-one-breach-100-million-credit-card-application-compromised","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/","title":{"rendered":"Capital One Breach: 100 Million Credit Card Application Compromised"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3663\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg\" alt=\"Capital One Breach: 100 Million Credit Card Application Compromised\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications. According to investigators, customer names, dates of birth, addresses and credit histories became exposed as a direct result.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">While tokenization did protect customers\u2019 credit card numbers and login credentials, 140,000 Social Security numbers became compromised; additionally, the hacker also accessed approximately 77,000 bank account numbers.\u00a0<\/span><\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Surprisingly, authorities identified and apprehended a suspect in connection to the Capital One Breach. Indeed, Paige A. Thompson, an employee at a third-party cloud provider, allegedly boasted of her criminal activities online. Not only did this lead authorities to discover the breach, but it led to her arrest. Unfortunately, evidence suggests she conducted her breach over a period of several months without detection.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Given the remoteness and anonymity of hackers, actual arrests for data breaches prove incredibly rare. For example, the hackers behind the Equifax breach, one of the most substantial in history, have never been identified.\u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What the Capital One Breach Means For Your Enterprise<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The fallout from the Capital One Breach remains ambiguous at this time. Certainly, the bank may have to pay a fine in excess of $100 million in the short-term. Also, their customers may have to contend with phishing attacks for years to come.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">However, enterprises can learn positive lessons from this breach for their own cybersecurity. For example, this breach shows the effectiveness of tokenization in mitigating the damage of a long-term breach. Even though the hacker allegedly dwelt on the network for over a decade, they could not gain access to the tokenized data. This should serve as your enterprise\u2019s wakeup call.\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">As another example, your threat intelligence should include unconventional sources as well as more traditional ones. You never know when a random forum post may become relevant to your enterprise.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Finally, always watch third-party behaviors and access to your network. Leaving unmonitored can open the door to the unscrupulous.\u00a0<\/span><\/p>\n<p style=\"text-align: justify\">To help protect your enterprise, get started with our <a href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-identity-and-access-management-software-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener noreferrer\">Identity Management Buyer&#8217;s Guide<\/a>. In it, we explore the top vendors and their key capabilities.<\/p>\n<p><em>Editor&#8217;s Note: We previously stated the breach took place over a period of 14 years; instead, the information breached came from about 14 years of credit card applications. The breach itself took place over the course of a few months before discovery.\u00a0<\/em><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/>\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications. According to investigators, customer names, dates of birth, addresses and credit histories became exposed as a direct result.\u00a0 While tokenization did protect customers\u2019 credit card numbers and login credentials, 140,000 Social Security numbers became compromised; additionally, [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":3663,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[6,1],"tags":[142,125,1201,16,112,76,70,30],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Capital One Breach: 100 Million Credit Card Application Compromised<\/title>\n<meta name=\"description\" content=\"Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/\",\"name\":\"Capital One Breach: 100 Million Credit Card Application Compromised\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg\",\"datePublished\":\"2019-07-30T14:06:02+00:00\",\"dateModified\":\"2019-08-15T15:56:00+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Nintendo Breach: What to Know and Expert Commentary\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Capital One Breach: 100 Million Credit Card Application Compromised\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Capital One Breach: 100 Million Credit Card Application Compromised","description":"Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/","url":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/","name":"Capital One Breach: 100 Million Credit Card Application Compromised","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg","datePublished":"2019-07-30T14:06:02+00:00","dateModified":"2019-08-15T15:56:00+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Popular credit card business and Virginia-based bank Capital One announced a hacker accessed 100 million customer credit card applications.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/11\/Dark-web-mod.jpg","width":800,"height":400,"caption":"Nintendo Breach: What to Know and Expert Commentary"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/capital-one-breach-100-million-credit-card-application-compromised\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Capital One Breach: 100 Million Credit Card Application Compromised"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4512"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=4512"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4512\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/3663"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=4512"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=4512"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=4512"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}