What Can We Learn from the LinkedIn Breach?
Today is another unfortunate reminder that no matter the size of a company or its industry, a data breach makes headlines.
Not only does it attract negative attention and erode customer confidence, an announcement that your company’s data has or may have been compromised can result in some steep financial penalties. If fines associated with violating regulations like HIPAA or state privacy laws don’t get you, potential lawsuits might.
Take LinkedIn, for example. Earlier this month, the social network of business professionals reported that nearly 6.5 million encrypted passwords had been leaked online.
There really are no lessons for the rest of us to learn from this latest breach, because most of us already know what we’re supposed to do.
- Keep passwords secure, reasonably complex, and change them regularly.
- Ensure your company is using only the most secure encryption standards like AES or Open PGP.
- Stay abreast of the latest news and techniques for keeping your company security policies and practices up to date and as impenetrable as possible.
- Invest in solutions that streamline your data encryption processes, that include comprehensive auditing and reporting tools, and that ensure the security of your data at rest and in motion.
The question is how much longer can you postpone taking these steps to ensure that your company isn’t making news next week with an embarrassing and costly data breach?