Skip to main content
SpringerLink
Log in
Apress
Book cover

Big Breaches

Cybersecurity Lessons for Everyone

  • Book
  • © 2021

Overview

Authors:
  1. Neil Daswani

    1. Pleasanton, USA

    View author publications

    You can also search for this author in PubMed   Google Scholar

  2. Moudy Elbayadi

    1. Carlsbad, USA

    View author publications

    You can also search for this author in PubMed   Google Scholar

  • Synthesizes and explains in plain English some of the biggest data breaches experienced to date
  • Provides a roadmap to recovery, starting with culture and habits from the board level, as well as countermeasures you can deploy and use on a daily basis to avoid breaches in the future
  • Analyzes areas of cybersecurity already invested in, and the additional areas of investment that are necessary
  • Offers a unique perspective from the author who served as CISO at the country’s largest identity protection provider

This is a preview of subscription content, log in via an institution to check access.

Access this book

Log in via an institution
eBook USD 24.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book USD 32.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Other ways to access

Licence this eBook for your library

Institutional subscriptions

Table of contents (17 chapters)

  1. Front Matter

    Pages i-xlvii
    Download chapter PDF

  2. Big Breaches

    1. Front Matter

      Pages 1-1
      Download chapter PDF

    2. The Root Causes of Data Breaches

      • Neil Daswani, Moudy Elbayadi
      Pages 3-33

    3. The Capital One Breach

      • Neil Daswani, Moudy Elbayadi
      Pages 35-53

    4. The Marriott Breach

      • Neil Daswani, Moudy Elbayadi
      Pages 55-74

    5. The Equifax Breach

      • Neil Daswani, Moudy Elbayadi
      Pages 75-95

    6. Facebook Security Issues and the 2016 US Presidential Election

      • Neil Daswani, Moudy Elbayadi
      Pages 97-130

    7. The OPM Breaches of 2014 and 2015

      • Neil Daswani, Moudy Elbayadi
      Pages 131-153

    8. The Yahoo Breaches of 2013 and 2014

      • Neil Daswani, Moudy Elbayadi
      Pages 155-169

    9. The Target and JPMorgan Chase Breaches of 2013 and 2014

      • Neil Daswani, Moudy Elbayadi
      Pages 171-191

  3. Cybersecurity Lessons for Everyone

    1. Front Matter

      Pages 193-193
      Download chapter PDF

    2. The Seven Habits of Highly Effective Security

      • Neil Daswani, Moudy Elbayadi
      Pages 195-232

    3. Advice for Boards of Directors

      • Neil Daswani, Moudy Elbayadi
      Pages 233-250

    4. Advice for Technology and Security Leaders

      • Neil Daswani, Moudy Elbayadi
      Pages 251-267

    5. Technology Defenses to Fight the Root Causes of Breach: Part One

      • Neil Daswani, Moudy Elbayadi
      Pages 269-302

    6. Technology Defenses to Fight the Root Causes of Breach: Part Two

      • Neil Daswani, Moudy Elbayadi
      Pages 303-329

    7. Advice to Cybersecurity Investors

      • Neil Daswani, Moudy Elbayadi
      Pages 331-359

    8. Advice to Consumers

      • Neil Daswani, Moudy Elbayadi
      Pages 361-383

    9. Applying Your Skills to Cybersecurity

      • Neil Daswani, Moudy Elbayadi
      Pages 385-407

    10. Recap

      • Neil Daswani, Moudy Elbayadi
      Pages 409-415
Back to top

Keywords

About this book

The cybersecurity industry has seen an investment of over $45 billion in the past 15 years. Hundreds of thousands of jobs in the field remain unfilled amid breach after breach, and the problem has come to a head. It is time for everyone—not just techies—to become informed and empowered on the subject of cybersecurity.

In engaging and exciting fashion, Big Breaches covers some of the largest security breaches and the technical topics behind them such as phishing, malware, third-party compromise, software vulnerabilities, unencrypted data, and more. Cybersecurity affects daily life for all of us, and the area has never been more accessible than with this book.

You will obtain a confident grasp on industry insider knowledge such as effective prevention and detection countermeasures, the meta-level causes of breaches, the seven crucial habits for optimal security in your organization, and much more. These valuable lessons are applied to real-world cases, helping you deduce just how high-profile mega-breaches at Target, JPMorgan Chase, Equifax, Marriott, and more were able to occur.

Whether you are seeking to implement a stronger foundation of cybersecurity within your organization or you are an individual who wants to learn the basics, Big Breaches ensures that everybody comes away with essential knowledge to move forward successfully. Arm yourself with this book’s expert insights and be prepared for the future of cybersecurity.




Who This Book Is For

Those interested in understanding what cybersecurity is all about, the failures have taken place in the field to date, and how they could have been avoided. For existing leadership and management in enterprises and government organizations, existing professionals in the field, and for those who are considering entering the field, this book covers everything from how to create a culture of security to the technologies and processes you can employ to achieve security based on lessons that can be learned from past breaches.

Reviews

“There is a detailed table of contents and good index, and chapters conclude with succinct summaries. In essence, Daswani and Elbayadi have brought Fowler’s 2016 work [2] up to date. This is an excellent reference for anyone working in the area of ICT cybersecurity. Management in particular will find it useful, as the authors have tried to keep technical jargon to a minimum … that can be taken to protect and minimize the impact of cyberattacks on organizations.” (David B. Henderson, Computing Reviews, March 31, 2023)

Authors and Affiliations

  • Pleasanton, USA

    Neil Daswani

  • Carlsbad, USA

    Moudy Elbayadi

About the authors

Dr. Neil Daswani is Co-Director of the Stanford Advanced Security Certification program, and is President of Daswani Enterprises, his security consulting and training firm. He has served in a variety of research, development, teaching, and executive management roles at Symantec, LifeLock, Twitter, Dasient, Google, Stanford University, NTT DoCoMo USA Labs, Yodlee, and Telcordia Technologies (formerly Bellcore). At Symantec, he was Chief Information Security Officer (CISO) for the Consumer Business Unit, and at LifeLock he was the company-wide CISO. Neil has served as Executive-in-Residence at Trinity Ventures (funders of Auth0, New Relic, Aruba, Starbucks, and Bulletproof). He is an investor in and advisor to several cybersecurity startup companies and venture capital funds, including Benhamou Global Ventures, Firebolt, Gravity Ranch Ventures, Security Leadership Capital, and Swift VC. Neil is also co-author of Foundations of Security: What Every Programmer Needs to Know(Apress).
Neil's DNA is deeply rooted in security research and development. He has dozens of technical articles published in top academic and industry conferences (ACM, IEEE, USENIX, RSA, BlackHat, and OWASP), and he has been granted over a dozen US patents. He frequently gives talks at industry and academic conferences, and has been quoted by publications such as The New York Times, USA Today, and CSO Magazine. He earned PhD and MS degrees in computer science at Stanford University, and he holds a BS in computer science with honors with distinction from Columbia University.


Dr. Moudy Elbayadi has more than 20 years of experience and has worked with a number of high-growth companies and across a variety of industries, including mobile and SaaS consumer services, and security and financial services. Having held C-level positions for leading solution providers, Dr. Elbayadi has a unique 360-degree view of consumer and enterprise SaaS businesses. Hehas a consistent track record of defining technology and product strategies that accelerate growth.


As CTO of Shutterfly, Dr. Elbayadi oversees all technology functions including product development, cybersecurity, DevOps, and machine learning/AI R&D functions. In this capacity he is leading the technology platform transformation. Prior to Shutterfly, Dr. Elbayadi held the position of SVP, Product & Technology for Brain Corp, a San Diego-based AI company creating transformative core technology for the robotics industry.


As advisor, Dr. Elbayadi has been engaged by CEOs and senior executives of companies ranging from $10M to $2B in revenues. Representative engagements include public cloud strategy, platform integration and M&A strategy. He has advised numerous VC firms on technology and prospective investments. 


Dr. Elbayadi earned a doctorate in leadership and change from Antioch University, a master’s degree in organizational leadership from Chapman University, and a master’s degree in business administration from the University of Redlands.



Bibliographic Information

  • Book Title: Big Breaches

  • Book Subtitle: Cybersecurity Lessons for Everyone

  • Authors: Neil Daswani, Moudy Elbayadi

  • DOI: https://doi.org/10.1007/978-1-4842-6655-7

  • Publisher: Apress Berkeley, CA

  • eBook Packages: Professional and Applied Computing, Apress Access Books, Professional and Applied Computing (R0)

  • Copyright Information: Neil Daswani and Moudy Elbayadi 2021

  • Softcover ISBN: 978-1-4842-6654-0Published: 25 February 2021

  • eBook ISBN: 978-1-4842-6655-7Published: 24 February 2021

  • Edition Number: 1

  • Number of Pages: XLVII, 427

  • Number of Illustrations: 41 b/w illustrations

  • Topics: Security

Publish with us

Policies and ethics

Back to top

Search

Navigation