Massive Breach Exposed 773 million E-mails, Passwords

  by    0   0

News of the latest global data breach of some 773 million e-mail address and passwords should prompt individuals and organizations alike to change their passwords – particularly for any accounts that have financial, credit card or other personal information.

The scope of this breach cannot be overstated as the list includes log-in credentials from more than 2,000 websites, according to an article on the website Marketwatch, which cited a report by security researcher Troy Hunt.

Hunt said that the files were collected from a number of breaches and uploaded to a cloud service called MEGA, and the data was promoted on popular hacking forums. MEGA eventually removed the data, so it’s not clear how many hackers gained access to the files.

Considering the size and scope of the data trove, you should immediately change your passwords on sites such as:

  • Your online e-mail services (like Gmail, Hotmail, etc.)
  • Your banking and other financial services accounts (retirement accounts, credit cards, etc.)
  • All of your social media accounts.
  • E-commerce sites.
  • Subscription sites and other sites that store your credit card information.

Hunt has created a page on his website for anybody to check to see if their e-mail address and passwords were compromised. You can check here for free: www.haveibeenpwned.com.

Hunt said even his own data appeared in the giant trove of stolen e-mails and passwords, despite his intensive security practices as a privacy professional.

If you have employees, you should notify all of them about the breach and urge them to change their passwords. It should be an organization-wide endeavor.

To best protect your privacy, Hunt recommends using strong passwords, a password manager and two-factor authentication. Two-factor authentication requires users to input a code sent to their phone or e-mail for log in, adding an extra layer of security

Top five password tips

  1. Adopt long passwords – And don’t use things like $ for the letter “s” or 3 for “E”, and other such changes that hackers are on to.
  2. Avoid periodic changes – Instead, change your passwords only when you feel there has been a threat. Most people will recycle old passwords or make small changes to their existing password.
  3. Create a password blacklist – Use this as the list of codes to avoid when making a new password.
  4. Implement two-factor authentication – Two-factor authentication has already become a de facto standard for managing access to corporate servers. In addition to traditional credentials like username and password, users have to confirm their identity with one-time code sent to their mobile device or using a personalized USB token.
  5. Organize regular staff training – Nearly 41% of company data leaks occur because of negligent or untrained workers who open phishing e-mails. It’s important to train employees to detect and avoid phishing and other social media attacks.


Related Posts

Basics of a Strong Lockout/Tagout Program

Engineer check and control welding robotics automatic arms machine in intelligent factory automotive industrial with monitoring system software. Digital manufacturing operation. Industry 4.0A lockout/tagout program will not be effective if your employees are not properly trained in how it works, and if you don’t have consequences for them if they fail to follow the program.  Every year, hundreds of workers in the United States die because they don’t follow lockout/tagout procedures or their employers did not have […]

READ MORE →

As Wildfire Risks Increase, Insuring Businesses More Difficult

Business property coverage is getting more difficult to come by for operations located in areas that are susceptible to wildfires. The devastating wildfires of the last few years, along with the thousands of homes and businesses that have been burned or damaged due to these events, has resulted in insurers becoming more selective about the […]

READ MORE →

CALIFORNIA: Bureau Recommends Workers’ Comp Rates Drop 5.4%

graph growthWorkers’ compensation insurance rates will likely continue sliding in 2020 after California’s rating agency submitted its recommendation that the state insurance commissioner reduce the average benchmark rates by 5.4%. If the recommendation is approved, it will be the ninth consecutive rate decrease since 2015 (some years had two decreases), which have resulted in the average […]

READ MORE →

A Lesson in Timely Claims Reporting

file claimsA recent appeals decision denied coverage to a company on its directors and officers (D&O) liability insurance policies for taking too long to file the claim.  In this case, the 5th U.S. Circuit Court of Appeals in New Orleans sided with an insurer that had denied a claim a company had made after being sued […]

READ MORE →

Discipline Should Be Part of Your Safety Program

discipline red cardDoes your injury and illness prevention program spell out the disciplinary action your company will pursue if its safety rules are not adhered to? Addressing disciplinary issues can be a very sensitive and stressful process for most managers, supervisors and employees. However, if disciplinary issues are avoided or handled poorly, it can lead to serious […]

READ MORE →

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to Top