This post is acting as a test for my site so I can make sure the content appears on my page. But I wanted to post something that had some type of value, rather than just a test with meaningless text.
Recently, financial Institutions have been in the news due to customer data being stolen. The problem is, almost all of the reports are blaming obscure third party vendors as the cause of customer data being stolen. In the software industry, security over personally identifiable information (P.I.I) is a huge task for any company. There are so many discussions on what is considered PII, how to store, encrypt, manage etc...
I've been lucky to be apart of early stages of discussions related to this matter while working with a team building a pretty large scale platform. I assumed any company responsible for protecting it's customers information was in line with how our company approached it.
There are so many ways a company can become a victim, such as a mistake in the code, environments lacking passwords, simple human errors and more. If this happens, a company should understand how the attack worked and fix that post haste. Audits should follow along with steps to add more security in order to make sure it never happens again.
The articles being posted do not share this opinion. Brand name companies are being attacked two times in less than one year. In the most recent article, it would not event mention the specifics of what happened. It blamed a nameless third party vendor with zero details on how they plan to make sure their customers are not targeted a THIRD TIME. I am lost for words.
Top comments (0)