I got an email this morning from play.com warning me that their marketing companies security had been breached, customer details had been lost.
We can all take the moral high ground but these kinds of events are common place. What we should really be doing is auditing our own security measures, challenging our suppliers to ensure they are employing best practices.
If you store passwords, are they encrypted? Are logins transacted under secure socket layer (SSL).
Is your web software platform updated with the latest security patches? Are you desktop PCs protected with anti virus? All simple measures without which data loss can occur.
If you send email addresses to a third party supplier, what NDA do you have in place? Security breeches can be malicious and as simple as emailing a spreadsheet.
We all handle personal data and have a responsibility to take every measure possible to secure it.
Posted via email from Web, Social, Analytics, Open Source