Technology

Security breach? Don’t blame your employees

admin-dominor


It’s not just the responsibility of the employees to keep your startup’s data safe

“As we all know, humans are often the weakest part of the security chain.”

Those are the words of Reddit CTO Christopher Slowe, who was quick to play the blame game in a post announcing that Reddit experienced a breach of internal data last week. He explained that the platform was compromised after an attacker sent “plausible-sounding prompts” to employees that redirected them to a website impersonating Reddit’s intranet portal in an attempt to steal credentials. Reddit said users’ data was safe.

Hackers successfully obtained an employee’s credentials, Slowe said, before calling out said employee — who decisively self-reported the incident to Reddit’s security team — as the “weakest link” in the company’s security defenses. (Ironically, Slowe went on to advise users to “update your password every couple of months,” a practice that is no longer recommended by most cybersecurity experts.)

Reddit isn’t alone in pointing the finger following a breach, and many organizations have defaulted to a blame culture when it comes to data security.



Source link

You May Also Like

Wattpad Premium subscribers now have access to 5 free monthly Wattpad Originals | TechCrunch

Wattpad Premium subscribers now have access to 5 free monthly Wattpad Originals | TechCrunch

admin-dominor
How Beatrice Dixon bootstrapped until The Honey Pot found a home | TechCrunch

How Beatrice Dixon bootstrapped until The Honey Pot found a home | TechCrunch

admin-dominor
ShareChat’s valuation drops below $2 billion in new funding | TechCrunch

ShareChat’s valuation drops below $2 billion in new funding | TechCrunch

admin-dominor