Huge Data Leak at Largest U.S. Bond Insurer

Discussion in 'privacy problems' started by MrBrian, Oct 7, 2014.

  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From http://krebsonsecurity.com/2014/10/huge-data-leak-at-largest-u-s-bond-insurer/:
     
  2. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,029
    Wow. In a comment from Brian:
     
  3. Countryboy15

    Countryboy15 Registered Member

    Joined:
    Sep 7, 2014
    Posts:
    82
    How does one "misconfigure" something that badly? Humans are humans, but come now, with something this sensitive do they not have more than one pair of eyes looking over this stuff?
     
  4. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,029
    They probably assume that the software wouldn't let them make such a huge mistake. And arguably it shouldn't. They ought to be a big "MAKE THIS PUBLIC" button.

    But then, it's not uncommon for clueless folk setting up Tor hidden services to forget that webservers on 127.0.0.1:80 are not restricted to Tor. That's not part of the webserver's job.
     
  5. ChristineBCW

    ChristineBCW Registered Member

    Joined:
    Sep 27, 2014
    Posts:
    38
    There's a thread with the title concerning our eventual over-saturated outrage over leaks, hacks, etc. Isn't this SkyNet's corporate motto?
     
  6. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
     
  7. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,196
    Location:
    Surrey, England.
    http://www.washingtonpost.com/blogs...ersonal-accounts-visible-via-a-google-search/

     
Loading...