[W]e must embrace the “data minimisation principle” – the idea that only necessary personal data should be collected and retained. We also need an approach that minimises centralised data collection, and gives more control to individuals.
I suppose it’s human nature to try and exploit a resource until it collapses. Seems CVE-1999-0517 is still out there.
“For quite a while, this focus on the core business processes worked pretty well,” Rudis continues, suggesting that executives have their confirmation bias dopamine fix reinforced year after year by not having down time or breaches.
“Organisations also try to keep capital investments (computer systems) going for as long as possible with as little interaction (updates) as possible,” he says.
containers… VM’s… 3D… shiny things…
Far right registrar and web hosting company Epik just got pwned by Anonymous.
The press release:
Actually, if it’s coming in via email, we most likely will stop it…
So, this just gets better for everybody:
The breach exposed a huge volume of data not just of Epik customers, but also scraped WHOIS records belonging to individuals and organisations who were not Epik customers.
Why it’s almost like the entirety of the internet infrastructure is insecure… but that can’t be right?
If I worked at the No Such Agency- I’d be thinking this is a test run.