.png?sv=2022-11-02&spr=https&st=2025-10-18T22%3A25%3A50Z&se=2025-10-18T22%3A37%3A50Z&sr=c&sp=r&sig=Z1NH3hKlRq7OR9PpKrJu%2BHR2wGXZi%2BtkoEpk3yd%2Fjlg%3D)
Clarifying The Security of 1Password Following Disney Breach
We know recent news about a Disney employee’s online security being compromised has raised some concerns, especially regarding password safety. We want to reassure you that 1Password itself was NOT breached—only this individual’s account was compromised.
This incident happened because the employee downloaded an un-vetted, malicious AI tool that contained a keylogger. From there, the report states that this individual had not implemented multifactor (otherwise known as two-factor) authentication on their Password vault, which enabled the threat actor to gain access. BlackCloak always recommends enabling MFA/2FA on all critical accounts, and had this individual had proper security controls in place, it is likely the scope of compromise would have been severely limited.
The good news? With our concierge cybersecurity service, we can help you avoid situations like this:
Think Before You Click: If you receive an unexpected email, text, or link, ask us before interacting.
Be Careful with Downloads: If you need software, let us review it for you before installing.
Use a Strong Master Password and Use MFA/2FA: Your 1Password vault is safe, but a strong, unique master password combined with MFA/2FA keeps it that way.
If you ever have concerns about your online security, don’t hesitate to reach out. Our team is always ready to assist you!
Cybersecurity Alerts: News Worth Noting
Investing.com Breach May Affect 6.5M Users - A malicious actor claimed responsibility for a data breach affecting 6.5 million people who used Investing.com.
DISA Experiences Data Breach Impacting 3M People - Employment screening company DISA Global Solutions filed a data breach notification letter stating that more than three million files containing personal information was compromised in a breach.
Data Breach Notification Service Adds 284M Accounts - Data breach notification service Have I Been Pwned added more than 284 million accounts that had been stolen by information stealer malware and were subsequently discovered on a Telegram channel.
Data Belonging to 12M Zacks Users Leaked - The sensitive data belonging to 12 million Zacks Investment Research users has been leaked online. Zacks had previously disclosed a data breach in January 2023.
Educational Roundup
Digital and Physical Security - In this on-demand webinar, learn how digital and physical security are intertwined.
Spotting Job Scams - In this on-demand webinar, learn how to spot job scams malicious actors post online.
From the Blog: Protecting Leaders in the Digital Age: BlackCloak & Blackbird.AI Join Forces
The ever-expanding digital landscape presents unprecedented risks for business leaders. Cyberattacks are no longer just about stealing data; increasingly, they target reputations, influence narratives, and even pose physical threats. To address this burgeoning threat, BlackCloak is partnering with another industry leader, Blackbird.AI, to offer comprehensive protection against this new wave of digital and narrative harm.
Company News
BlackCloak Names Santhana Parthasarathy VP of Engineering - BlackCloak is excited to announce its appointment of Santhana Parthasarathy as its new Vice President of Engineering. With over 25 years of experience in engineering and product leadership, Parthasarathy brings a wealth of expertise and a distinguished history of success in building and managing large, high-performing engineering teams.
Upcoming Events
BlackCloak is attending Convene: Clearwater in Florida this March. If you or your colleagues are attending any of these events, please visit us and say hi.
March 3-4 | Clearwater, FL