Exploit: Unauthorized adtech.
Health Service Executive (HSE): National health service website.
Risk to Small Business: 1.888 = Severe: Webpage users are having their data “continuously and invisibly leaked to commercial actors,” including sensitive topics with health-related information. A study of adtech installed on public health service websites found that 73% of HSE landing pages contained ad trackers. Although organizations are not being held responsible for this type of data exposure, consumers are easily spooked. Because of the study and the looming threat of GDPR compliance fines, the HSE is in the process of redesigning its website.
Individual Risk: 2.428 = Severe Cookies placed on the website could be used to infer sensitive information about user health information. These companies can build profiles and sell them to third-party marketers, insurers, credit raters, and more. Nevertheless, this news only brings mid-level risk since the companies involved are typically not malicious in nature.
Customers Impacted: To be determined.
How it Could Affect Your Customers’ Business: The business of leveraging customer data for precision marketing is coming under scrutiny, especially with the introduction of GDPR in Europe. As the public becomes more aware of how their data is being used, companies must adapt by implementing security solutions to protect their consumers.
ClearYolk to the Rescue: Monitoring the Dark Web for stolen credentials is critical for companies who want to provide comprehensive security to their organisation. Our Phishing service compliments that data with simulated phishing attacks and security awareness training campaigns to educate employees, making them the best defence against cybercrime.