DecryptedTech

Tuesday04 October 2022

Displaying items by tag: Data Breach

84

Data security (and privacy) has been in the news a lot lately as if it is a new and troubling issue. In fact this has been a major topic of discussion going back to the mid-1980s when the first consumer available modems hit the market. This started the practice of war dialing where phone phreaks would dial random numbers to see if any would answer to their computers. One of the more famous phone phreaks is none other than Steve Wozniak, Co-Founder of Apple Computers. These are the guys that pioneered the hacking scene (and in some cases the piracy scene as well). Back then security was primitive and usually consisted nothing more than a login and a password. Fast forward more than 30 years and the security of some places is little better than what it was back in the war dialing days.

Published in Editorials
broken-lock

Today (Sunday July 21 2013) Apple officially admitted that someone had hacked their developer site. The notification came out as a warning that some information including names, addresses and email information might have been accessed. What we find interesting is that this announcement comes on the heels of a multi-day outage to the same site. It looks like Apple might have known about the breach earlier and not told anyone until they confirmed that user data was compromised (in which case they might have been compelled to). This is not exactly what you want to hear from a company that prides themselves on the security and safety of their operating system AND their ecosystem.

Published in News
lock-broken

Security is a huge issue and has always been one ever since the first person decided they wanted to protect what they owned. Through the centuries the art of security has evolved and a multitude of inventions have blossomed on the scene to help us keep our property safe and secure. Once the data age started we had new concerns and our fertile minds came up with new and more creative ways to protect our new digital property. These two separate (yet dependent) fields are broken down into physical and digital security. The problem is that neither of these are effective unless we apply human security. This is the practice of securing people (humans) against being the largest security hole in any network or location.

Published in Editorials
lock-broken

Over the last few years we have followed the sorry state of cyber security in both corporate and governmental systems and have always been surprised at the solutions that they have presented. For some reason these groups want to remove responsibility from themselves for making sure their data (which in some cases is your data) is secure. This lack of corporate responsibility has led to misguided bills, acts and other nonsense that will still not do anything to stem the tide of security breaches. One of the most famous examples of this is QinetiQ.

Published in News
Code

In 2012 there was more than 1 data breach per day and of these 365 plus breaches about 80% managed to get some sort of data. This is a pretty scary number when you think about it, but it actually pales by comparison to the number of personal accounts that are compromised due to poor security, weak passwords, and malware designed to steal passwords. So what do you do to help prevent this? A simple answer is to just not have any online accounts so there is no chance of getting your account compromised. However, we know that this is not really a viable solution so it is fortunate that many companies are finally turning to two-step authentication to help mitigate this type of attack.

Published in News
News manstealingdata

We have two additional hacks to report this morning. The first was a little shocking as it has been learned that nVidia’s Developer Zone form was under attack. Although details of this attack are small it does appear that nVidia recognized that there was an attack on the forum and shut it down to prevent additional attack. However nVidia warns that the hashed passwords for the forum may have been accessed. Right now the forum is still down with only a canned message in its place warning users about the attack and advising them to change their passwords especially any passwords that might be identical across multiple sites.

Published in News
Page 2 of 2