Slashdot Mirror

← Back to Stories (view on slashdot.org)

Millions of Records Leaked From Huge US Corporate Database (zdnet.com)

Posted by msmash on from the security-woes dept.

Millions of records from a commercial corporate database have been leaked. ZDNet reports: The database, about 52 gigabytes in size, contains just under 33.7 million unique email addresses and other contact information from employees of thousands of companies, representing a large portion of the US corporate population. Dun & Bradstreet, a business services giant, confirmed that it owns the database, which it acquired as part of a 2015 deal to buy NetProspex for $125 million. The purchased database contains dozens of fields, some including personal information such as names, job titles and functions, work email addresses, and phone numbers. Other information includes more generic corporate and publicly sourced data, such as believed office location, the number of employees in the business unit, and other descriptions of the kind of industry the company falls into, such as advertising, legal, media and broadcasting, and telecoms.

66 comments

  1. Don't worry by Anonymous Coward · · Score: 0

    Here's the solution.

    1. Re: Don't worry by Anonymous Coward · · Score: 1

      .. be happy

  2. And this is news how? by Anonymous Coward · · Score: 0

    This is the new norm, is the only "new" invulvaed.

  3. fast solution by supernova87a · · Score: 5, Insightful

    $1 penalty per leaked / stolen record, imposed by the FTC/SEC/SSA/CFPB will quickly remedy this problem. As long as the value of private personal information is intangible, the value it will be assigned in companies' risk assessments and capital plans is $0.

    But I guess that would be a burdensome regulation under our new regime.

    1. Re:fast solution by Bob+the+Super+Hamste · · Score: 4, Insightful

      Personally I would like it to be $10 per record paid to the person who the record is on. If it record contained some critical info like SSN or last 4 digits of SSN then make it $1000 per record. Granted those values don't actually cover the cost of the impacted individual in dealing with these situations (hey we leaked your SSN, mother's maiden name, and first pet's name so now you get to deal with fraud committed by others for the rest of your fucking life) but it would go a long way to ensuring that companies take some measures to actually protect personal data.

      --
      Time to offend someone
    2. Re:fast solution by pr0t0 · · Score: 1

      This. 100% this. It encourages a "store less, protect more" ethos. So if you're a company that really wants to make storing/selling demographic data your business model (ie marketing / telephone sanitizers), you'll protect the hell out of that database. It also discourages fly-by-night companies with no security-dna to start that type of business.

      I would add levels of pain. Name and address? That's mostly publicly available; small fine. SSN, CCN, pins or passwords? You had better have a good reason for storing that kind of data. Much bigger fine. Companies will be far less likely to store data like that simply because it's available, and more likely to adopt a "use-once and forget" strategy.

      Unfortunately it would discourage disclosure of breaches. So there's that.

      --
      I'm sorry, but your opinion seems to be wrong.
    3. Re:fast solution by Proudrooster · · Score: 1

      Companies spend some dollars on security to comply with audits and 1) know they are going to get owned (due to having their data managed on servers all over planet earth) 2) know they have a risk rider on their insurance. If the government wants to get in their face, they can just point to the CIA Vault#7 leak and if they haven't heard about that, they can point to the DNC email server.

      Security is officially and illusion. Even the high-end "super secure" stuff is owned by the CIA, so what are you going to do? Another sad day in IT.

    4. Re:fast solution by Solandri · · Score: 1

      The problem with that approach here is that the government required you to register with Dun & Bradstreet if you wanted to bid on government contracts. When I worked at a hotel, I had to register us with them because a military group wanted to stay at our hotel for a retreat, and they required us to bid on the contract.

      So any penalty imposed on them would just end up being paid for by the government via higher fees, and/or higher contract bid prices.

    5. Re:fast solution by Anonymous Coward · · Score: 0

      Hmm, this type of data gets stale quickly, so the 30 million records likely have 60 million errors.

    6. Re:fast solution by JustAnotherOldGuy · · Score: 1

      $1 penalty per leaked / stolen record, imposed by the FTC/SEC/SSA/CFPB will quickly remedy this problem. As long as the value of private personal information is intangible, the value it will be assigned in companies' risk assessments and capital plans is $0.

      I wish that penalties like this would spur them to keep my data safe, but it won't. At best it *might* make them try a little harder but I'm afraid the fact is that nothing will keep our data safe from those who want it.

      The CIA, NSA, FBI....they all get hacked. Everyone gets hacked. There's no preventing it as far as I can tell. The attack surface is so large and there are so many potential points and methods of entry, it's a losing battle. That doesn't mean you should take precautions but if "they" want your data they'll get it, whether "they" are the government, some fucker in Romania, Putin's merry band of state-sponsored hackers, the competition, or the kid next door.

      Also, knowing Dun & Bradstreet, they'd just pass the costs along to their users or turn the penalty into some kind of tax write off. Or both.

      --
      Just cruising through this digital world at 33 1/3 rpm...
    7. Re:fast solution by JustAnotherOldGuy · · Score: 1

      Fuck. TypoMan strikes again.

      "That doesn't mean you shouldn't take precautions..."

      --
      Just cruising through this digital world at 33 1/3 rpm...
    8. Re:fast solution by Anonymous Coward · · Score: 0

      ^ this

    9. Re:fast solution by Anonymous Coward · · Score: 0

      "security-dna"

      Get the fuck out of my meeting. I do not tolerate buzzword bingo at any level.

    10. Re:fast solution by Anonymous Coward · · Score: 0

      All we need is one solid class action lawsuit right?

  4. Fiancial impact on the business world by evolutionary · · Score: 1

    Wonder if it will drive down the price of marketing data from other firms knowing that there is a set of data out there. It will go out of date eventually, but even old data can be good for updating.

    --
    "Imagination is more important than knowledge" - Einstein
    1. Re:Fiancial impact on the business world by networkBoy · · Score: 1

      well, since my e-mail was in the db (https://haveibeenpwned.com/) I would love a copy of it...
      Anyone have a link to it?

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
  5. A word by nospam007 · · Score: 1

    "...more generic corporate and publicly sourced data, such as believed office location, the number of employees in the business unit, and other descriptions of the kind of industry the company falls into, such as advertising, legal, media and broadcasting, and telecoms."

    The word you're looking for is 'client list' . (damn, that's 2 words)

  6. A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

    I think your proposal highlights a flaw inherent with how leftists try to solve real-world problems.

    You aren't thinking about how to solve the problem at hand.

    You're just thinking about increasing costs related to the problem, without this actually helping in any meaningful way.

    Yes, what you're proposing would be very burdensome.

    All it does is make doing routine business far more expensive and difficult to do.

    Worse, it encourages affected organizations to not disclose breaches, as they would face costly fines.

    What is a non-leftist solution to this problem?

    It's actually quite simple: just avoid storing all of this sort of data to begin with!

    Data that don't exist or aren't stored can't be stolen.

    It should be clear now that leftist-style regulations just don't help.

    They inhibit the economy without actually addressing whatever problem they're supposed to solve.

    In many cases they're extremely regressive, not only in that they don't accomplish anything useful, but in how they actually encourage and reward even more harmful behavior (like not disclosing breaches to avoid paying fines).

    The real solution to problems like this is to avoid the environment and situations that allow the data theft to happen.

    The solution surely doesn't involve yet more bureaucracy, regulations, fines, and other leftist-supported nonsense like those.

    1. Re:A leftist cost-based solution won't work. by fuzzyfuzzyfungus · · Score: 1

      "What is a non-leftist solution to this problem?

      It's actually quite simple: just avoid storing all of this sort of data to begin with!"

      So it's just Dun & Bradstreet's well-known dedication to establishing the dictatorship of the proletariat that caused them to accumulate all these data? Not, y'know, the fact that it's how they make money? This seems eminently plausible...

    2. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

      We should just lower their taxes and pray they spend that savings on better security.

    3. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 2, Insightful

      It's actually quite simple: just avoid storing all of this sort of data to begin with!

      Gawd what a stupid suggestion.

      It costs money to store this shit (even insecurely). So why do companies do it? Because they believe that the value of the data outweighs the cost of storing it.

      So your idiot "just don't do that" suggestion is basically asking companies to walk away from money because. . .why? Why would they do that?

      Would criminalizing the storage of certain data be "non-leftist"?

    4. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

      There's no valid reason to store data like patient records, bank records, etc.

      We should simply suggest to people that they not store such data under penalty of...nothing. If anyone ignores the suggestion and stores data of the wrong sort anyway and said data leaks, the free market will sort things out after millions of people have been injured.

      That's a small price to pay so we can avoid bureaucracy, regulations, fines, and other leftist-supported nonsense.

    5. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

      Gosh no wonder you stupid cunts voted for Trump...

    6. Re:A leftist cost-based solution won't work. by peragrin · · Score: 2

      Spoken like a person who doesn't know what Dunn and Bradstreet do. One of their functions is to store this type of data as well as corporate payment records so businesses can lookup a credit score on other businesses. This let's them do things like setup charge accounts quickly.

      It has all the flaws of credit reporting agencies plus their strengths. Speed of modern business that the time wasted filling out a credit report, sending it in, hoping to get responses takes too long.

      Also businesses still use charge accounts with each other, backed by themselves. These low to mo interest temporary accounts allow money and products to flow quickly. Dnb helped to facilitate setting up those approvals.

      --
      i thought once I was found, but it was only a dream.
    7. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

      So what happens when Dunn and Bradstreet leaks data?

    8. Re:A leftist cost-based solution won't work. by CaptainDork · · Score: 0

      Wrong, snarkleface.

      Like Trump, you offer yak-yak like

      It's actually quite simple: just avoid storing all of this sort of data to begin with!

      but you don't submit an alternative solution .

      You are dismissed.

      --
      It little behooves the best of us to comment on the rest of us.
    9. Re:A leftist cost-based solution won't work. by turning+in+circles · · Score: 1

      Actually, conservative economics requires that you provide appropriate incentives to corporations and then they will act in their own economic best interest. If you provided a right to sue to people whose informatin was stolen, or a set $$ cost that would go to the injured party, then if the $$ is fixed appropriately, they shouldn't care whether their information is hacked. If it is, they get the $$ which is what it costs them to get the problem fixed appropriately. If they don't get hacked, no problem. But D&B has no economic incentive (other than its own corporate losses) to keep the data safe, so they are not putting much effort into safeguarding it.

      People's data currently has no value in this economy, it seems, that is worth anyone protecting.

      --
      Might as well face it I'm addicted to data.
    10. Re:A leftist cost-based solution won't work. by Anonymous Coward · · Score: 0

      "What is a non-leftist solution to this problem?"

      Give the high-level execs a 21 gun salute by firing squad.

  7. whats the impact by Anonymous Coward · · Score: 0

    I get it, data leaks are bad. But what actually comes from this? Spam to random emails addresses? Doesnt that just happen anyway? You can scrape email addresses or even generate random ones a number of ways... the impact here doesnt seem that large.

    Even the Ashley Madison hack. That 1 should have had a huge impact as it should have outed a lot of cheaters, possibly public figures as cheaters (and also possibly outing homosexuals). But what became of it?

    These stories of leaked data keep becoming more common and everyone says its BAD and needs to be stopped. Im just looking for the backup for it actually causing some kind of harm.

    1. Re:whats the impact by Anonymous Coward · · Score: 0

      Spear fishing will be a huge one. Look at that Erdogan story from earlier... how do you think that happened? Search all title fields for "social" and start looking for weak links.

      These are usually marketing / pr recent grads that don't know anything about opsec.

  8. Don't worry! by fuzzyfuzzyfungus · · Score: 1

    Just remember; focus on the 'scary hackers' side of the story; not the 'the data were already aggregated and available, and presumably in use, well before the leak occurred' aspect.

    As long as giant databases remain in respectable hands, no harm can come of them; so just worry about whether it was a nation-state actor or an 'advanced persistent threat'. Nothing else to see here.

  9. It's already more costly than that. Risk (insuranc by raymorris · · Score: 3, Informative

    > $1 penalty per leaked / stolen record

    The average cost to a company that's breached is already well over $1 per record, so no that doesn't "quickly remedy this problem". It IS slowly getting things fixed. A lot of companies have a Chief Security Officer now, a C-suite executive responsible for security. That wasn't the case ten years ago.

    The issue is, the likelihood of a major breach is low (for each conpany). People, including executives, aren't good at reasoning about unlikely events. On the other hand, insurance companies are very good at it. Risk assessment and risk reduction is their business and they've gotten quite good at it. Insurance companies created the fire code, UL labs, etc to reduce the risk of fire. They hold companies responsible for properly mitigating all kinds of risks, as a condition of issuing insurance. The cost of the insurance, which shows up on the balance sheet, is based on the risk-reduction methods that the insured uses. (Just like installing monitored fire and burglary alarms reduces the cost of your homeowners insurance). I think we'll see a major shift in information security when the insurance companies get more involved, requiring companies they insure to follow certain standards.

  10. Wait a Minute by Anonymous Coward · · Score: 0

    They told me all I had to do was change my password every month and use 2 factor authentication. How can this be happening?

  11. Time to sue by Anonymous Coward · · Score: 0

    10 years ago this stuff happened WAY too much. NOW? It is absolutely ridiculous. Apparently these companies don't value data that should be kept private. Companies like this, Yahoo, and others - shouldn't legally be allowed to exist.

  12. Mostly fake? by niaxilin · · Score: 1

    I did a haveibeenpwned check against our domain name and a couple of fake email addresses showed up in the NetProspex leak. These were email addresses that have never existed. Plus, none of our actual email addresses were in the leak.

    This may be a list of 33.7 million mostly fake or SPAM email addresses. Just sayin'.

  13. Lol, say what? by JustAnotherOldGuy · · Score: 2

    From http://www.dnb.com/utility-pag...

    "Data Security: Dun & Bradstreet applies appropriate technical, physical, and administrative Data security measures to protect Data against unauthorized access and disclosure."

    Except when they don't....

    Also, (farther down the page): "Dun & Bradstreet does not respond to Do Not Track Signals."

    --
    Just cruising through this digital world at 33 1/3 rpm...
    1. Re:Lol, say what? by Khashishi · · Score: 1

      Unauthorized here means unauthorized by them. They couldn't care less what you authorize.

    2. Re:Lol, say what? by Anonymous Coward · · Score: 0

      Dunn and Bradstreet has always been a gaping hairy asshole of a company (shady billing practices, credit card stuffing, etc.). It's a safe bet that they've certainly leaked before in the past. Probably by USB drives walking out the door or burning to CD before that. Only differences is that these days breaches actually make the news. Otherwise they wouldn't give two flying shits about this loss of information.

      TL;DR: You're right.

  14. Credit stuff is one thing, federated ID is next by ErichTheRed · · Score: 3, Informative

    If I were a thief, the thing I'd try attacking is the increasing use of federated identity, and hit those targets with everything I had...social engineering, zero-days, finding soft spots where cut-rate consulting firms left the door open, the works. In the new cloudy world of abstracted everything, companies are finding it easier to rely on a few identity providers..."log in using Facebook" and the like. In the Microsoft, Google and Amazon iterations of this (MS account, Azure AD, Google Account, Amazon Identity Management,) companies are using third parties to handle authentication to their resources (at least on the web.) This means that the identities are slowly being consolidated to a few providers on the corporate side. Anyone using Office 365 in an organization likely has their credentials synchronized up to Azure AD, for example, so they can use the web apps like Outlook and Skype.

    OAuth and the like set up a very strong environment, but it's still just an identity database under the hood. Even if the provider has no idea what your password is, a hash of it is being stored somewhere...otherwise you wouldn't be able to authenticate. If anyone ever comes up with an easy way to break this, then everyone's going to be in for a round of password changes and free credit monitoring. Getting someone's corporate credentials gives thieves a lot more access than stealing one database.

    1. Re:Credit stuff is one thing, federated ID is next by sl3xd · · Score: 1

      If anyone ever comes up with an easy way to break this, then everyone's going to be in for a round of password changes and free credit monitoring.

      You mean like the Ashley Madison hack, where the hackers found a weakness in the implementation of bcrypt, and were able to compute user passwords in "Hollywood time"?

      The bottom line there is that, like encryption, non-experts shouldn't develop their own implementations of a password hash. (Similar to "non-experts shouldn't implement encryption").

      With a good implementation of a state-of-the-art password hash (such as Argon2), breaking a password hash isn't feasible.

      Passwords, however, are so last century.

      Anything that takes security seriously has a 2nd factor, of which there are a couple of excellent open standards, including OATH and FIDO U2F -- the latter of which involves cryptographic hardware and an encryption key which can't be recovered from the device (unless, maybe, you're the NSA).

      With FIDO U2F, even if the password is in plain text, an attacker downloading the password database will be unable to authenticate without the U2F device (and its encryption key).

      --
      -- Sometimes you have to turn the lights off in order to see.
    2. Re:Credit stuff is one thing, federated ID is next by Anonymous Coward · · Score: 0

      You are right, federated identity is a very real risk right now.

      Let's all reflect on what the Australian Government has done with their "MyGOV" portal. Note, I wanted to start this list with a Wikipedia page informing readers of what MyGOV is. But such a page does not exist. Why not?

      https://my.gov.au/mygov/content/html/about.html

      http://www.smh.com.au/it-pro/security-it/revealed-serious-flaws-in-mygov-site-exposed-millions-of-australians-private-information-20140514-zrczw.html

      https://www.scmagazine.com/bold-phishers-use-australian-mygov-to-pull-pii/article/641854/

      http://www.smh.com.au/it-pro/security-it/security-bolstered-on-mygov-website-after-dire-warnings-20141230-12fm2l.html

    3. Re:Credit stuff is one thing, federated ID is next by Anonymous Coward · · Score: 0

      But why? Thieves aren't Robin Hood or whistleblowers, they're thieves. You're saying these thieves stole this information just to leak it, purely to be a dick?

    4. Re:Credit stuff is one thing, federated ID is next by Anonymous Coward · · Score: 0

      Some people just want to watch the world burn.

  15. Where can you get a copy? by Anonymous Coward · · Score: 0

    Sounds like a great thing to have when starting a business

  16. Alright, where do I get it? by mi · · Score: 1

    It can't be copyrighted, and it is not (any longer) private information either... Is there a torrent or something?

    --
    In Soviet Washington the swamp drains you.
    1. Re:Alright, where do I get it? by onepoint · · Score: 1

      been looking around, Not a single source in the wild yet

      --
      if you see me, smile and say hello.
    2. Re:Alright, where do I get it? by Anonymous Coward · · Score: 0

      You can search it on haveibeenpwned.

    3. Re:Alright, where do I get it? by FormOfActionBanana · · Score: 1

      One record at a time!

      --
      Take off every 'sig' !!
  17. At least it wasn't the government by GerryGilmore · · Score: 1

    See, when government agencies get hacked it's "well, government can't do ANYTHING right! See?" and when it's a private company, the response is "oh, yeah. Happens all the time. They really need to tighten up security...".

  18. Oh noes! by SeaFox · · Score: 1

    The purchased database contains dozens of fields, some including personal information such as names, job titles and functions, work email addresses, and phone numbers. Other information includes more generic corporate and publicly sourced data, such as believed office location, the number of employees in the business unit, and other descriptions of the kind of industry the company falls into, such as advertising, legal, media and broadcasting, and telecoms.

    So... pretty much the exact same information you can get by viewing someone's LinkedIn profile?

    1. Re:Oh noes! by Anonymous Coward · · Score: 0

      So... pretty much the exact same information you can get by viewing someone's LinkedIn profile?

      If the data wasn't valuable, companies wouldn't be paying upwards of $200,000 to get it.

      Military quartermaster commanders don't have LinkedIn profiles that say "I'm the primary ammunition purchaser for the United States Marine Corps." CIA techs don't have LinkedIn profiles that say "I'm the network administrator at the US Embassy in Sofia." This leak contains that sort of information. It's going to be very useful for highly targeted phishing and social engineering.

    2. Re:Oh noes! by Anonymous Coward · · Score: 0

      Even if this were true there's a big difference between being able to look up one record and being able to look up millions.

  19. Re: It's already more costly than that. Risk (insu by Anonymous Coward · · Score: 0

    The fire code is a leftist solution to the Problem of fire, it just adds cost but doesn't Prevent fire. The rational way to approach this is to just outlaw fire.

  20. I'd say it's the #1 most effective (and cost effec by raymorris · · Score: 2

    > > avoid storing all of this sort of data to begin with!

    > Gawd what a stupid suggestion.

    Based on my 20 years in information security, I'd say that's the very BEST suggestion to start with. Not only is it very effective, it's very COST EFFECTIVE. Twenty years ago, a great many companies used social security number as a handy identifier for people. Now we don't do that so much - there is no need to use SSN as a customer ID or employee ID, and there is great risk in doing that. So just don't store anybody's SSN, and you can never leak their SSN. The government agency I worked at before my current job was finishing up the process of removing SSNs from all databases when I left.

    Companies who take payments by credit card only need the card number once, at the time of payment. Yet many of them kept the CC number laying around in a database for no good reason. Smart companies prevent big leaks of credit card numbers by simply not storing credit card numbers. Charge the card and be done with it - no need to store the number.

  21. Link To The Actual Link? by Anonymous Coward · · Score: 0

    Or does slashfag just do clickbait now?

    1. Re: Link To The Actual Link? by Anonymous Coward · · Score: 0

      I would like a link to the torrent so that i can mitigate any exposure of my personal info now. Or should I just wait so that the criminals and authorities can tell me that I am safe and it has been magically 'contained'.

      Thanks.

    2. Re: Link To The Actual Link? by Anonymous Coward · · Score: 0

      You can check if you were in that breach (or any other recent ones we know about) on https://haveibeenpwned.com/

  22. Leaked? by sycodon · · Score: 1

    Is that the new synonym for Stolen?

    --
    When Fascism comes to America, it will call itself Anti-Fascism, and tell you to give up your guns.
  23. Re:I'd say it's the #1 most effective (and cost ef by Anonymous Coward · · Score: 0

    Yet many of them kept the CC number laying around in a database for no good reason. Smart companies prevent big leaks of credit card numbers by simply not storing credit card numbers. Charge the card and be done with it - no need to store the number.

    Wrong. Smart companies store tokenized forms of the CC number so that they can remove a hurdle to repeat business without bearing the risk of losing re-useable payment info.

  24. Re: It's already more costly than that. Risk (insu by Anonymous Coward · · Score: 0

    What would the rightist approach be, then? Calling the fire "FAKE FIRE" and pretending it doesn't exist?

  25. Oh good riddance! by Anonymous Coward · · Score: 0

    Dun & Bradstreet is one of the most scummy companies on earth. Other companies use D&B reports to determine what their competitors are doing. D&B spies on other organizations on behalf of those paying them money to spy. D&B will also go after individuals. While I'd like to hope that this leak sinks their ship into oblivion we all know that is probably not going to happen.

    I've been the target of D&B before. I'd love to get my hands on that database to see who was behind it.

  26. Re: It's already more costly than that. Risk (insu by Anonymous Coward · · Score: 0

    Sorry, you're still describing a leftist approach to it not a rightest.

  27. If it can be charged, it's probably sensitive by raymorris · · Score: 2

    If the "tokenized forms of the CC number" can be used to charge the card, it probably shouldn't be made public.

    If many customers will legitimately want to do further purchases, and for some reason entering the CC number is a major hurdle (both propositions that should be proved, not assumed) you can actually store it without storing it, in a way.

    Certain customers can make purchases from us without re-entering their CC, but the CC number isn't stored on the web server, nor in the database that drives the web site, nor in any other system that stores data to be retrieved by these systems. None of our customer-facing systems, or systems that allow data retrieval of any kind, store credit card data. Instead, credit card information is stored on an isolated system which only accepts commands and returns "ok" or "failed". All other systems in the company can only send a command "please charge the card for customer #312" - there is no mechanism to retrieve data from that system. So our database and systems in general don't store CC data or other sensitive information, but we can still use customer CCs because it's stored only in, and can be accessed only by, the one hardened system. So that's an extension of "don't store sensitive data you don't need to store - and don't sensitive data in systems you don't need to store it in".

    1. Re:If it can be charged, it's probably sensitive by ninthbit · · Score: 1

      While minimizing the footprint for attack is the best way to handle the data, it is still at risk from internal threats. The isolated system still has a management interface, and people who develop/maintain it. Not to mention with "cloud" services being all the rage today, it's probably hosted on a VPS that god knows who owns the hardware. Nothing stops the provider from getting hacked, and then the whole VPS getting copied out.

      There is no way to fully secure shared data. You can only mitigate as much risk as possible.

  28. Re: It's already more costly than that. Risk (insu by Anonymous Coward · · Score: 0

    The rightist approach would be to invent alternative facts. "That isn't a fire, it's a beautiful display of light. Remember the horrific napalm massacre on Bowling Green? Now *that* was a fire."

  29. On-premises, armed guards by raymorris · · Score: 1

    > There is no way to fully secure shared data. You can only mitigate as much risk as possible.

    This is true. In our case, it's not in the cloud. It's a physical machine. An old machine worth about $30 because all it needs to do is store the encrypted data and when needed send it to the credit card network.

    Orginally access was via the console only, you had to physically touch the keyboard to do anything on the system, with all ports blocked on the firewall. Later we enabled only ssh from the internal network. Of course to ssh you also habe to have an approved ssh key, then seperately you need the encryption key to unlock the credit card data.

    For physical security, nobody goes into the server room without permission and most of our employees carry Glocks. At least one is a state licensed security officer (me). Once, a friend barged into the office - two employees drew their pistols before he made it to the door.

    It's unlikely that anyone will get our customer's credit card information. Possible, but unlikely.