Massive Breach Exposed 773 million E-mails, Passwords

  by    0   0

News of the latest global data breach of some 773 million e-mail address and passwords should prompt individuals and organizations alike to change their passwords – particularly for any accounts that have financial, credit card or other personal information.

The scope of this breach cannot be overstated as the list includes log-in credentials from more than 2,000 websites, according to an article on the website Marketwatch, which cited a report by security researcher Troy Hunt.

Hunt said that the files were collected from a number of breaches and uploaded to a cloud service called MEGA, and the data was promoted on popular hacking forums. MEGA eventually removed the data, so it’s not clear how many hackers gained access to the files.

Considering the size and scope of the data trove, you should immediately change your passwords on sites such as:

  • Your online e-mail services (like Gmail, Hotmail, etc.)
  • Your banking and other financial services accounts (retirement accounts, credit cards, etc.)
  • All of your social media accounts.
  • E-commerce sites.
  • Subscription sites and other sites that store your credit card information.

Hunt has created a page on his website for anybody to check to see if their e-mail address and passwords were compromised. You can check here for free: www.haveibeenpwned.com.

Hunt said even his own data appeared in the giant trove of stolen e-mails and passwords, despite his intensive security practices as a privacy professional.

If you have employees, you should notify all of them about the breach and urge them to change their passwords. It should be an organization-wide endeavor.

To best protect your privacy, Hunt recommends using strong passwords, a password manager and two-factor authentication. Two-factor authentication requires users to input a code sent to their phone or e-mail for log in, adding an extra layer of security

Top five password tips

  1. Adopt long passwords – And don’t use things like $ for the letter “s” or 3 for “E”, and other such changes that hackers are on to.
  2. Avoid periodic changes – Instead, change your passwords only when you feel there has been a threat. Most people will recycle old passwords or make small changes to their existing password.
  3. Create a password blacklist – Use this as the list of codes to avoid when making a new password.
  4. Implement two-factor authentication – Two-factor authentication has already become a de facto standard for managing access to corporate servers. In addition to traditional credentials like username and password, users have to confirm their identity with one-time code sent to their mobile device or using a personalized USB token.
  5. Organize regular staff training – Nearly 41% of company data leaks occur because of negligent or untrained workers who open phishing e-mails. It’s important to train employees to detect and avoid phishing and other social media attacks.


Related Posts

A New Approach to Preventing Workplace Injuries

While overall workplace injuries have been falling in the last decade, the numbers of deadly and catastrophic injuries are actually on the rise. A new report recommends that employers focus their injury prevention efforts on reviewing accidents that could have resulted in serious injury or death, as well as on near misses, where a potentially […]

READ MORE →

OSHA Not Letting Up on Inspections, Penalties

industrial safetyDespite expectations, Fed-OSHA under the Trump administration has not backed off on enforcing workplace safety regulations. In fact, the agency is as aggressive as ever and citations are higher than ever as well, after fines were increased substantially three years ago. Based on the agency’s own statistics, a company that’s inspected has only a 25% […]

READ MORE →

Protect Outdoor Workers Against the Elements of Winter

If you have outdoor workers or staff that will have to venture out into the elements during an especially cold winter, you need to make sure you are taking the correct precautions to keep them safe. If the conditions are extremely harsh, your workers are at heightened danger of injury, or worse. But even if […]

READ MORE →

Employee Embezzlement on the Rise – Are You Protected?

A typical organization will lose an estimated 5% of its revenues every year due to fraud, according to a study by the Association of Certified Fraud Examiners. The median loss among organizations both large and small was $140,000 per occurrence, and more than 20% of embezzlement losses were more than $1 million, the association found. […]

READ MORE →

OSHA Stays Serious About Temp Worker Safety

While the Trump administration has eased off a number of regulations and enforcement actions during the past two years, Fed-OSHA continues focusing on the safety of temporary workers as much as it did under the Obama presidency. This puts the onus not only on the agencies that provide the temp workers, but also on the […]

READ MORE →

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to Top