Skip to main content
banner image
venafi logo

Encryption Stories We’re Reading Right Now: The Wendy's Breach [Encryption Digest 1]

Encryption Stories We’re Reading Right Now: The Wendy's Breach [Encryption Digest 1]

Image of the Wendy's girl on the outside of a Wendy's restaurant
April 5, 2019 | Katrina Dobieski


Here are the encryption stories that intrigue us at the moment. We look for the most relevant pieces about encryption and give you a summary of the week’s security events. Stick with us - you might learn something.
 

In this edition, we uncover the surprising common denominator in last year’s biggest security breaches, establish how to move to cloud safely, and review the missing pins that lead to Wendy’s POS mis-adventure. Keep abreast of industry developments as we pull crucial news off the back shelf and shine coverage on the constantly evolving landscape that is encryption and machine identity protection.



 

Is Your Company’s Sensitive Data as Safe as You Think?

Microsoft_Logo_PNG.png


Could you put a dollar amount on the cost of your average “mega breach”?
 

If you guessed $350 million dollars, you’d be a good guesser. If you guessed $350 million dollars, a generation of public reputation, hard-won consumer trust and nail-biting PR control, you’d be a very good guesser.
 

2018 saw mega-corps like Google+, Facebook and British Airways take a plunge into the spiraling world of uber-leaks, and the missing parts are just starting to surface for the autopsy. So what was the answer? Human error.
 

“A recent study revealed that 47% of business leaders blamed human error for their company’s most recent data breach.”
 

Insufficient automation played an incriminating role, as many errors stem from manual processes that can be mechanized by proper machine identity protection solutions. Read the full article.

 

Your Data Is In The Cloud. What Is Your Last Line Of Defense Against Threats?


If your data is in the cloud, what happens if it rains? Rashi Mittal at SAP recommends a hefty encryption game-plan for any cloud-type migration. Her strategy:

  • Gain visibility of data being moved to the cloud
     
  • Decide if you plan to encrypt all data, or sensitive-only data
     
  • Make an encryption plan
     
  • Have a key management strategy
     

Citing the eminent risk of corporate data breaches, she singles out encryption as “your last line of defense.”Read the full article.

 

Wendy’s Breach Reaches $50+ Million in Settlements




What’s worse than stale fries? How about a $50 million dollar settlement over a three-year-old breach, washed down with a $3.4 million dollar class-action lawsuit.

 

So, where’s the beef?

With one of Wendy’s’ POS systems, apparently. It was hacked in 2015 and then again in 2016. Both times Wendy’s failed to notify the public.
 

The public responded by suing the corporation for not properly securing its systems, and the franchise recently reached the non-value menu price of $50 million in settlement charges. Wendy’s implicated “compromised third-party vendor credentials” as the likely culprit. The POS vendor remained unnamed.


Encrypt, Now

Despite added layers of regulation, adding encryption to POS systems may be crucial in mitigating effects. Bob Carr, CEO of Heartland Payment Systems, a formerly-breached POS provider, asserts “without tokenization and end-to-end encryption, payment data will still be vulnerable to attack and compromise.” Read the full article.



Related posts

Like this blog? We think you will love this.
defi-stolen-funds-and-private-keys
Featured Blog

With Rapid Rise in Funds Stolen from DeFi Protocols, Private Keys in Play

Massive heist begins with

Read More
Subscribe to our Weekly Blog Updates!

Join thousands of other security professionals

Get top blogs delivered to your inbox every week

Subscribe Now

See Popular Tags

You might also like

TLS Machine Identity Management for Dummies
eBook

TLS Machine Identity Management for Dummies

Certificate-Related Outages Continue to Plague Organizations
White Paper

CIO Study: Certificate-Related Outages Continue to Plague Organizations

About the author

Katrina Dobieski
Katrina Dobieski

Katrina writes for Venafi's blog and helps optimize Venafi's online presence to advance awareness of Machine Identity Protection.

Read Posts by Author
get-started-overlay close-overlay cross icon
get-started-overlay close-overlay cross icon

How can we help you?

Thank you!

Venafi will reach out to you within 24 hours. If you need an immediate answer please use our chat to get a live person.

In the meantime, please explore more of our solutions

Explore Solutions

learn more

Email Us a Question

learn more

Chat With Us

learn more