"Many data breach disclosures use the word "limited" when describing the impact on individuals' information, but organizations are known to play a little fast and loose with its definition. For the record, the Oxford dictionary defines it as "restricted in size, amount, or extent; few, small, or short." One recent example was Aussie telco TPG Telecom saying the impact of a breach at subsidiary iiNet was "limited," and this referred to around 280,000 customers' email addresses."
"In its Form 8-K filing with the SEC, Boyd Gaming went on to say that it does not expect the costs related to cleanup to have a material impact on its financial condition, primarily due to it holding a "comprehensive cybersecurity insurance policy." This will cover costs associated with bringing in external digital forensics and incident response teams, as well as legal action or regulatory fines. JLR, take note."
Boyd Gaming disclosed that attackers breached its technology systems and removed certain data, possibly including personal information of employees and a limited number of other individuals. The company has not confirmed the timing or perpetrators of the attack and has not specified which additional individuals or what specific data were affected. Many organizations describe impacts as "limited," though that term has been used for incidents affecting hundreds of thousands or millions of records. Boyd Gaming said cleanup costs likely will not materially affect its finances because a comprehensive cybersecurity insurance policy should cover forensics, incident response, legal costs, and regulatory fines.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]