Data Breaches Harder to Understand
Brian Martin of the Open Security Foundation and DataLossDB.org project writes:
On the off chance you missed any news outlet the last 30 days, an “anti security” movement has been reborn. Started in 1999, theAntisec Movement focused on encouraging security consultants and hackers not to disclose vulnerabilities to vendors. The recent resurgence of this movement has also morphed it into a campaign focusing on demonstrating the current weaknesses of security on the Internet. This is being brought to light via mass intrusion and the subsequent publishing of sensitive data such as e-mails, customer information and database details.
The most recent rash of high-profile compromises can be tracked to a group known as LulzSec, a splinter group from the biggerAnonymous collective. Along with other recently formed groups such as “Uberleaks” (@uberleaks on Twitter), we saw dozens of small breaches a day that resulted in private information being exposed. Even with “Uberleaks” apparently calling it quits, the Antisec movement is still going strong.
While the general trend of increasing data breaches is easier to understand, some of the breaches themselves become problematic to DatalossDB.org, a project designed to track such breaches. If a breach is problematic to a group of volunteers that have been tracking breaches for years, it spells trouble for consumers.
Read more on Credant. As one of the curators/moderators of DataLossDB.org, I say a heartfelt “Amen!” to what Brian has written.