2018, Events and Passwords - Information Management Today

Banks, Arbitrary Password Restrictions and Why They Don't Matter

Troy Hunt

SEPTEMBER 17, 2019

Allow me to be controversial for a moment: arbitrary password restrictions on banks such as short max lengths and disallowed characters don't matter. troyhunt pic.twitter.com/9FMSdvVRiL — Hagen (@hagendittmer) June 3, 2018. link] @troyhunt — Daniel Parker (@CodyMcCodeFace) June 21, 2018. 6 characters.

Passwords

Passwords Authentication Security IT

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. Password re-use becomes orders of magnitude more dangerous when website developers engage in this unsafe practice.

Sales

Sales Marketing e-Discovery Passwords

More New York SHIELD Act guidance

Data Protection Report

JULY 12, 2022

The container had a database backup file with over three million records of customer email addresses and account passwords, the latter of which were hashed and salted. Wegmans concluded the misconfiguration was introduced when the container with the database was set up, back in January 2018. Our Take.

Passwords

Passwords Data collection Personal data Cloud

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. Hello and welcome to the final IT Governance podcast of 2018. Equifax issued its financial report for the first quarter of 2018, revealing that its huge 2017 data breach had so far cost it $242.7

Data breaches

Data breaches Personal data Access GDPR

ICO Fines Ticketmaster £1.25 Million for Security Failures

Hunton Privacy

NOVEMBER 16, 2020

Ticketmaster’s breach started in February 2018 when malicious code was injected into a chatbot included on Ticketmaster’s payment page (though the penalty relates to the breach from May 25, 2018, when the GDPR came into effect). The incident came to an end in June 2018 when the chatbot was disabled. million in the UK.

Security

Security GDPR Personal data Risk

2018 Retrospective

Troy Hunt

JANUARY 3, 2019

Here's my 2018 highlights, starting with travel: Travel "Oh yeah, I'm totally gonna travel less this year" - me every single year In reality, my travel ended up looking like this: That's the same number as last year, 4 more days and another 8,000km. Probably with my 2018 events page which lists everything I did of a public nature.

Passwords

Passwords Security IT Government

Trojan Shield, the biggest ever police operation against encrypted communications

Security Affairs

JUNE 8, 2021

The goal of the new platform was to target global organised crime, drug trafficking, and money laundering organisations, regardless of where they operated, and offer an encrypted device with features sought by the organised crime networks, such as remote wipe and duress passwords, to persuade criminal networks to pivot to the device. .

Encryption

Encryption Communications Sales Passwords

Group-IB: More than 70% of Russian banks are not ready for cyberattacks

Security Affairs

FEBRUARY 19, 2019

Group-IB , an international company that specializes in preventing cyberattacks , has conducted high-tech cybercrimes research based on an analysis of responses to information security incidents carried out by Group-IB Incident Response team in 2018. According to the new research, hackers traditionally target the financial sector.

Information Security

Information Security Marketing Security Phishing

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

Some IoB devices can provide access to systems and workspaces without the need for passwords or key cards and can offer convenient purchases of goods or services. ” March 28, 2018. August 27, 2018. January 20, 2018. January 3, 2018. November 29, 2018. November 12, 2018. Spring 2018.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

What You Should Know About Secure File Sharing When Proprietary Information is Involved

OneHub

DECEMBER 6, 2018

According to Juniper Research, cybercriminals stole 12 billion records in 2018. Additionally, the Ponemon Institute’s 2018 ‘Cost of a Data Breach’ study for IBM found that the average cost of a data breach to companies worldwide was $3.86 Transactions within the VDR are also completely anonymous to other users.

Security

Security Cloud Data breaches Encryption

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

Ransomware frequently contains extraction capabilities that can steal critical information like usernames and passwords, so stopping ransomware is serious business. In the event of a successful breach, your team must be ready to restore systems and data recovery. Utilize a CASB. Rapid Response Testing. Sandbox Testing.

Ransomware

Ransomware Encryption Insurance Cloud

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). A consumer may request this information twice in a 12-month period. The sponsor, Alastair Mactaggart, agreed to withdraw his ballot initiative if AB 375 were signed into law before the June 28 withdrawal deadline.

GDPR

GDPR Privacy Sales Data breaches

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

4 The Regulation sets minimum standards for compliance related to the assessment of cybersecurity risks, the prevention and detection of security events, and post-breach management. The NYDFS alleges in April 2018, FAST contained 753 million documents, 65 million of which had been tagged by First American’s employees as containing NPI.

Financial Services

Financial Services Cybersecurity Insurance Risk

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). A consumer may request this information twice in a 12-month period. The sponsor, Alastair Mactaggart, agreed to withdraw his ballot initiative if AB 375 were signed into law before the June 28 withdrawal deadline.

GDPR

GDPR Privacy Sales Data breaches

A Decade of Have I Been Pwned

Troy Hunt

DECEMBER 3, 2023

These are often mainstream news events and what reporters often want to impart to people is along the lines of "Here's what you should do if you've been impacted", which often boils down to checking HIBP. Passwords This was never on the cards originally. So, in 2017, Pwned Passwords was born.

Data breaches

Data breaches Passwords Sales IT

Busting SIM Swappers and SIM Swap Myths

Krebs on Security

NOVEMBER 6, 2018

In late September 2018, the REACT Task Force spearheaded an investigation that led to the arrest of two Missouri men — both in their early 20s — who are accused of conducting SIM swaps to steal $14 million from a cryptocurrency company based in San Jose, Calif. . million customers.

Passwords

Passwords Authentication Access IT

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Data Matters

OCTOBER 22, 2019

In the summer of 2018, the California Legislature drafted and passed the California Consumer Privacy Act (CCPA) in record time. In the unlikely event regulations are able to be filed by February 29th, they will be effective on April 1st. Today we look at consumer notice. Intro and Background.

Privacy

Privacy Sales Paper Compliance

How to Prevent SQL Injection Attacks

eSecurity Planet

MARCH 10, 2021

Therefore encryption and hashing passwords, confidential data, and connection strings are of the utmost importance. . Enforce Best Practices for Account and Password Policies. While it might go without saying, organizations must follow the best account and password policies for foolproof security. Deny Extended URLs.

Passwords

Passwords Encryption Access Security

The Hacker Mind: Shattering InfoSec's Glass Ceiling

ForAllSecure

MARCH 8, 2023

So I'm the founder of the investment firm, which now is our fun to we funded about 12 We actually want to talk now 15 companies across the two funds and we have almost $100 million under management. Make the event organizers know your position on this. So clarity is one of those companies and they are IMS ting them in 2018.

Cloud

Cloud Marketing IT Security

One Year After GDPR: Significant Rise on Data Breach Reporting from European Businesses

Thales Cloud Protection & Licensing

MAY 24, 2019

A lot of studies at the time showed that companies would not be ready for the 25th of May 2018 which led a lot of privacy professionals to assume the worst when they tried to hypothesize about what could happen when the new European legislation would come into effect. GDPR Penalties.

Data breaches

Data breaches GDPR Personal data Compliance

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

In the summer of 2018, the California Legislature drafted and passed the California Consumer Privacy Act (CCPA) in record time. Today we look at consumer requests. Check back daily for the next installment, or visit the CCPA Monitor for a collection of all our CCPA insights. Intro and Background. Content of Response.

Sales

Sales Privacy Passwords Compliance

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

The leaked information allegedly includes customers’ names, dates of birth, email addresses, passwords and phone numbers. The organisation also found that 94% of organisations have experienced a serious email security incident in the past 12 months. Data breached: 10,870,524 lines.

Data Privacy

Data Privacy Privacy Manufacturing Retail

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Startup Est Headquarters Staff Funding Funding Type Abnormal Security 2018 San Francisco, CA 261 $74.0 Series A Confluera 2018 Palo Alto, CA 33 $29.0 Series A Perimeter 81 2018 Tel Aviv, Israel 159 $65.0 2018 Santa Clara, CA 305 $50.0 Series A Confluera 2018 Palo Alto, CA 33 $29.0 2018 Santa Clara, CA 305 $50.0

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Project Svalbard: The Future of Have I Been Pwned

Troy Hunt

JUNE 10, 2019

Increasingly, I was writing about what I thought was a pretty fascinating segment of the infosec industry; password reuse across Gawker and Twitter resulting in a breach of the former sending Acai berry spam via the latter. And while I'm on Sony, the prevalence with which their users applied the same password to their Yahoo!

Data breaches

Data breaches Passwords IT Mining

Information Management Today

Banks, Arbitrary Password Restrictions and Why They Don't Matter

Breached Data Indexer ‘Data Viper’ Hacked

Trending Sources

More New York SHIELD Act guidance

Weekly podcast: 2018 end-of-year roundup

ICO Fines Ticketmaster £1.25 Million for Security Failures

2018 Retrospective

Trojan Shield, the biggest ever police operation against encrypted communications

Group-IB: More than 70% of Russian banks are not ready for cyberattacks

What IG Professionals Should Know About the Internet of Bodies

What You Should Know About Secure File Sharing When Proprietary Information is Involved

Ransomware Protection in 2021

California Enacts Broad Privacy Laws Modeled on GDPR

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

California Enacts Broad Privacy Protections Modeled on GDPR

A Decade of Have I Been Pwned

Busting SIM Swappers and SIM Swap Myths

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

How to Prevent SQL Injection Attacks

The Hacker Mind: Shattering InfoSec's Glass Ceiling

One Year After GDPR: Significant Rise on Data Breach Reporting from European Businesses

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

Top Cybersecurity Startups to Watch in 2022

Project Svalbard: The Future of Have I Been Pwned

Stay Connected