Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
4 ways to royally leak your company data
#1
Lightbulb 
Quote:
[Image: unusual-ways-to-leak-info-fearued.jpg]

A few stories about how easy it is to accidentally leak sensitive information into the public domain.

If you post pics of concert tickets on Instagram without hiding the barcode, someone could get to see your favorite band instead of you. The same can happen even if you do hide the barcode, but with the wrong tool.

That said, remembering to conceal the barcode properly before bragging about tickets isn’t so difficult. It’s a totally different matter when you post a photo online without noticing a ticket or, say, a sticky note with passwords accidentally in frame. Here are several cases when people published confidential data online without realizing it.

1. Posting photos against a password backdrop

Photos and videos taken in offices and other facilities reveal passwords and secrets way more often than you might think. When taking snapshots of colleagues, few people pay attention to the background, the result can be embarrassing — or even dangerous.

Military (lack of) intelligence

In 2012, the British Royal Air Force put its foot in it, big time. Along with a photo report about Prince William, who was then serving in an RAF unit, login details for MilFLIP (military flight information publications) were made public. A username and password on a piece of paper adorned the wall behind the Duke of Cambridge.

Soon after their publication on the royal family’s official website, the images were replaced with retouched versions, and the burned credentials were changed.

Whether they were pinned on the wall again is unknown.

The Prince William incident is hardly unique. Lesser-known military personnel also share secrets online, both with and without the help of the press. For example, one officer published a selfie on a social network against a backdrop of working displays showing secret information. The serviceman got off lightly with “re-education and training.”

On-air leak

In 2015, French television company TV5Monde fell victim to a cyberattack. Unidentified individuals hacked and defaced the organization’s website and Facebook page, and they interrupted broadcasting for several hours.

Subsequent events turned the story into a farce. A TV5Monde employee gave reporters an interview about the attack — against a backdrop of passwords for the company’s social media profiles. In the images, the text is hard to read, but enthusiasts were able to get the password for TV5Monde’s YouTube account.

Coincidentally, it was also a lesson in how not to create a password: The secret phrase in question turned out to be “lemotdepassedeyoutube,” which, translated from French, is literally “youtubepassword.” Fortunately, the company’s YouTube and other accounts emerged unscathed. However, the password backdrop story provides some food for thought regarding the initial cyberattack.
...
Continue Reading
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
AWZ Screen Recorder
AWZ Screen Recorder ...zevish — 11:05
Website X5 Go 2024.1
Website X5 Go 2024.1...zevish — 09:32
Apple's rules to allow third-party app ...
Apple has announ...alison30 — 09:28
Intel: Microsoft AI PCs need a Copilot K...
Microsoft hopes th...harlan4096 — 08:55
Synchredible 8 Professional Edition v8.2...
          Synchredib...zevish — 08:54

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
There are no staff members currently online.

>