« How To Lock Down Your iOS Mobile Device | Main | California AG Asks United Airlines To Provide A Privacy Policy With Its Mobile Device App »

Friday, October 19, 2012

Massive Data Breach At IEEE Affects 100,000 Members

Late last month, the IEEE (Institute of Electrical and Electronics Engineers) experienced a massive data breach affecting 100,000 of its members. The breach left the usernames and passwords of its members exposed in plain text for a month.

An independent security researcher discovered the breach and notified the organization on September 24. On September 25, the IEEE confirmed the breach.

The breach is an embarrassment for the IEEE, which describes itself on its website as:

"... the world’s largest professional association dedicated to advancing technological innovation and excellence for the benefit of humanity."

Basic data security methods include the encryption of sign-in credentials. CSO Online reported:

"Torsten George, vice president of worldwide marketing and products for Agiliance, a security risk management firm, called it 'plain stupid.' Paul Ducklin, writing at Sophos' Naked Security blog, called it, 'a veritable security disaster'... A number of IEEE members were also failing to use basic security... seven of the top-10 most popular passwords were combinations of the number string '1234567890,' in order. Others in the top 20 included 'password' and 'admin'..."

Posted on Friday, October 19, 2012 at 01:58 PM in Corporate Responsibility, Data Breaches |

| | |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00e008d035db8834017c32926993970b

Listed below are links to weblogs that reference Massive Data Breach At IEEE Affects 100,000 Members:

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.

Verify your Comment

Previewing your Comment

Posted by:  | 

This is only a preview. Your comment has not yet been posted.

Working...
Your comment could not be posted. Error type:
Your comment has been saved. Comments are moderated and will not appear until approved by the author. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.

Working...

Post a comment

Comments are moderated, and will not appear until the author has approved them.

Follow

  • Updates via E-mail RSS Feed Updates via Twitter Updates via Facebook

Categories

Recent Comments

Search

Recent Posts

May 2013

Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

About

  • Citizens Caucus to protect Social Security
  • Proud Elder Blogger
  • George Jenkins, author of the I've Been Mugged Blog