Informationweek Influencer
Martin McKeay (@mckeay)
- Twitter Bio:
- Blogger, podcaster, recovering QSA and security twit. Talking about Security since 2004 My opinions are my own and do not reflect those of my employer.
- Location:
- Santa Rosa, CA
- Website:
- http://www.mckeay.net
Martin McKeay's Selections From the Web
Sumit Suman recently visited a site, did not sign up for anything, did not connect via social media, but got a personal email from the site the next day.I’ve learned that there is a “website intelligence” network that tracks form submissions across their customer network. So, if a visitors fills out a form on Site A with their name and email, Site B knows their name and email too as soon as they land on the site.It all started 2 weeks ago when I got a promotional email (anonymized to avoid promotion) offering toI get B2B marketing emails all the time but what caught my eye was the inclusion of a report snapshot for 42Floors.com showing names,
The above comment might seem incredibly harsh, but really, there's no good excuse for a site this prominent to not have a salted, secure password hashing system. Even if they started with an unsalted password system, users can be migrated to the newer more secure system on next login.
The only way I could regain respect for LinkedIn is if we find that these unsalted hashes were from users who never logged in to LinkedIn after the security upgrade. From the replies of other HN users who have found their password hashes in the leaked list, this doesn't seem to be the case though.
I can understand database leaks. Bad things happen.
NOTE: We will post each installment here for the security industry to garner feedback for about one week prior to posting to Forbes.com and a more mainstream and business readership. Please comment toward improving/clarifying the content.
More than anything, our goal was to cause thought – and get people talking. We believe we have done this. At the time, peers thought we were crazy to choose to tread on such volatile ground. At the time, researchers were afraid to mention the ‘A’ word, and journalists (for the most part) were miles off the mark of understanding the motivations and nature of “Anonymous”. While we may
Upcoming Events
Live Events
- BYOD into the Cloud: The Next Phase of Enterprise Mobility -
- Big Data: Architecting Systems at Speed - E2 Conference Boston
- Secure your mobile applications in the new commerce era - Mobile Commerce World - Mobile Commerce World
- Get practical information on how to develop your organization's mobile commerce application - Mobile Commerce World - Mobile Commerce World
- Learn how to move your broadband service to an All-IP network at TelcoVision (formerly TelcoTV) - TelcoVision
This Week's Issue
Current Healthcare Issue
- Healthcare CIO 20: Innovation is tough amid today's regulatory checklists. These leaders are getting it done.
- Lessons Learned: Boston area CIO John Halamka reflects on the marathon bombing
- And much more!
- Read the Current Issue
Current Education Issue
- Hacking Higher Ed: The cybersecurity challenge on college campuses lies as much with the students as with malicious outsiders.
- When Education Gets Too Virtual: Students can use technology to undermine the integrity of education.
- And much more!
- Read the Current Issue
Related Whitepapers
- Business Value of Compilers
- IBM Analytic Answers for Retail Purchase Analysis and Offer Targeting
- Government Analytics: Set Goals, Drive Accountability and Improve Outcomes
- A Smarter Approach: Inside IBM Business Analytics Solutions for Mid-Size Businesses
- Business Analytics for Midsize Businesses: Challenges and Benefits
Related Reports
