Everyone on the internet should follow good data security and privacy practices. And when I say everyone, I mean everyone. IT pros aren’t the only people who need to protect their data. If you’re online in any capacity, there are some basic techniques you should use. I’m not talking about things like encryption and data masking; if I tried to tell my mother about those, she would stare blankly at me.
As important as adding new features, app developers need to start placing more emphasis on the security aspect of the applications they design. After all, more app features mean more data residing within an app. Without proper security controls in place, that data can be vulnerable to intruders.
As one of the biggest threats to data security, data exfiltration has the potential to result in devastating outcomes for organizations. From significant financial loss to regulatory compliance violations to sensitive asset leaks, data exfiltration is a critical business risk. Although it may seem difficult, preventing data exfiltration is possible with the right security strategies.
As the Coronavirus disrupted the day-to-day lives of billions of people around the world over the last several months, businesses are in the middle of what Time Magazine describes as the “world’s largest work-from-home experiment.” Practically overnight, many companies were forced to adjust their operations by moving millions of workers out of their offices and into their homes.
In 2018, the world’s trust was shaken. That year, it was revealed that Cambridge Analytica had furtively harvested data left exposed by Facebook. The information of over 87 million individuals was exploited to assemble voter profiles and customise the distribution of political advertisements in the run up to the 2016 US Presidential Election as well as Brexit.
Because the global economy has transitioned from manufacturing to one based in knowledge, cyberattacks are now the fastest-growing crime in the world and are expected to cost businesses and governments $6 trillion a year by 2021. Today, a company’s most valuable assets are its intellectual property and proprietary data.
Sebastian Neef (@gehaxelt) is a IT security freelancer and a top contributor from the Detectify Crowdsource community. In this guest blog, he looks at ways WordPress plugins leak sensitive data in the wild: The OWASP Top 10 puts Sensitive Data Exposure on the 3rd place of the most common web security issues. In this blog post we will have a look at sensitive data exposure that you might not be aware of.
Data loss prevention (DLP) is a set of processes and technologies that ensure sensitive data is not lost, misused or exposed to unauthorized users by end-users or misconfiguration. Most data loss prevention solutions rely on data classification. This means that sensitive data is grouped into different buckets, e.g. regulated, confidential, financial data, intellectual property, and business-critical data.
Having worked with many individuals responding to incidents where their digital private images were shared without consent, social media or email accounts had unauthorised access, and even physical safety was a concern, it is all too familiar how terrifying the unknown can be. As someone who has been on both the victim’s and later the responder’s side, I am qualified to express both the terror and knowledge of things you can do to take back control.