Data on 30K medical marijuana customers left unprotected

Data from Wawa breach now for sale | Unsecured cloud databases pose identity theft risk | When a fat wallet isn't good Created for {EMAIL} | [Web Version]( January 30, 2020 [Data Security & Privacy SmartBrief]( [Data Security & Privacy SmartBrief]( [SIGN UP]( ⋅ [SHARE]( ⋅ [ARCHIVE]( [] Top Story [] [Data from Wawa breach now for sale]( Data from Wawa breach now for sale (Jim Watson/AFP via Getty Images) The millions of credit card details from the Wawa data breach are now available on card fraud forum Joker's Stash. Security firm Gemini Advisory says the data dump includes personal and financial data from "30 million US records across more than 40 states," in addition to more than 1 million records from outside the US. [ZDNet]( (1/28) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] Data Security & Privacy [] [Unsecured cloud databases pose identity theft risk]( Large organizations that fail to adequately protect their cloud-based databases put consumers at significant risk, the Identity Theft Resource Center writes in a new report, adding that last year, more than 160 million sensitive records were exposed in 15,000 known breaches, up 17% from 2018. Using different logins and passwords for different accounts can protect against credentials for one account being used for another one. [CBS News]( (1/28) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] Cyber Risk [] [When a fat wallet isn't good]( When a fat wallet isn't good (Pixabay) Advice on preventing identity theft usually focuses on digital practices, but the lowly analog wallet can put people at risk, too, says security specialist Bruce McCully. He recommends removing unneeded cards, adding that the fraud that can result from their theft can be impossible to detect for months. [WSMV-TV (Nashville, Tenn.)]( (1/29) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] [Why e-learning is ideal for cybersecurity education]( E-learning is an engaging way to teach employees about cybersecurity because of its accessibility and the depth of information it provides, writes Juliette Peters. E-learning can include videos stored in the cloud for easy updates, messaging apps that alert employees to potential breaches and subscriptions to online learning sites. [Infosecurity (U.K.)]( (1/28) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] - [NIST publishes draft cybersecurity guidelines]( The Hill (1/27) [] By the Numbers [] [Data on 30K cannabis customers left unprotected]( Data on 30K cannabis customers left unprotected (Pixabay) Information on at least 30,000 customers of medical marijuana dispensaries across the US was left exposed on an unprotected database by THSuite, a cannabis industry point-of-sale software company. Details included full names, addresses, and cannabis varieties and quantities purchased, and although the leak has now been patched, "questions about the consequences of outing who uses a quasi-legal substance hang over the increasingly mainstream industry," Blake Montgomery writes. [Newsweek]( (1/23), [The Daily Beast]( (1/24) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] - [Clinic worker accused of funneling patient data to lawyer]( Detroit Free Press (1/25) [] Practice & Policy [] [Detroit employees to get free credit monitoring after breach]( A security breach potentially affecting more than 15,000 current or former Detroit employees has led the city to offer free credit monitoring for a year. Chief Information Officer Beth Niblock said email accounts were compromised in mid-January, but "it is highly unlikely" that personal data was stolen. [WXYZ-TV (Detroit)]( (1/24) [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] Editor's Note [] Updates to Privacy Policy We want to make sure you are aware of changes to the SmartBrief Privacy Policy, effective Jan. 1, 2020. You can find our updated [Privacy Policy here](. Some key updates include: - New privacy features for Californians' consumer privacy rights under the California Consumer Privacy Act of 2018. - Additional information regarding our use of advertising networks and advertising tags. Thank you for being a valued SmartBrief subscriber. [LinkedIn]( [Twitter]( [Facebook]( [Email]( [] [] I have the feeling that I've seen everything, but failed to notice the elephants. Anton Chekhov, writer, playwright [LinkedIn]( [Twitter]( [Facebook]( [Email]( Learn more about AllClear ID: [About AllClear ID]( [Sign Up]( [SmartBrief offers 200+ newsletters]( Subscriber Tools: [Manage Subscriptions]( [Update Your Profile]( [Unsubscribe]( [Send Feedback](mailto:allclear@smartbrief.com) [Archive]( [Search]( Contact Us: Editor - [Sarah Nessel](mailto:allclear@smartbrief.com) Mailing Address: SmartBrief, Inc.®, 555 11th ST NW, Suite 600, Washington, DC 20004 © 1999-2020 SmartBrief, Inc.® [Privacy policy]( | [Legal Information]( Â