So, another day, another data breach. This one is the motherload. 16 Billion, with a B, credentials, ie usernames and passwords. Almost all of the data is new, there’s about 200 million records that were known breaches. The breach stretches across providers, operating systems and vendors. It is not from a singular attack, but a compilation of a long exfiltration of data via infostealers and similar.
What does that mean for you? Go change your important passwords, again. Use a password manager. Passkeys are becoming more common, but I haven’t researched them so have no opinion. The ones I’ve seen use biometrics, and my work systems don’t have cameras.
This is a big deal, and you should pay attention to it.
#infosec #passwords #hack #darkweb #16billionrecords
https://cybernews.com/security/billions-credentials-exposed-infostealers-data-leak/
I am assuming that once again none of the data is encrypyed and passwords are not encrypted either.
Changing passwords / password managers are end users, surely it should be up to the persons providing that service to ensure it is secure and provide a simple interface for the end user, rather than putting the onus on them to keep changing passwords as if end users are to blame.
@zleap Absolutely agree. But there’s two factors here. Hacks/data breaches, and exfiltration via user installed malware.
Reportedly, the vast amount of new data which has been analyzed, is provably from exfiltration programs. These are risks that can only be mitigated at the user level, and therefore require more and wider education.
When it comes to data breaches like the ones that we’ve seen from healthcare companies and surveillance, I mean credit agencies, there should be penalties so significant it brings the company to its knees. It should be the nuclear level of penalty. Make them afraid to run basketweave code so open that script kiddies can break it. Quit making IT an afterthought, pay your ceo less and hire a fucking team.
Except in the case of credit reporting agencies, they should be driven into the sea, and the land salted where they settled.