Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Passwords for sale


Published on

In the last years we are reading more and more news about massive (millions) breach of passwords in web services as communities, emails services, cloud services and others.
Hackers simply are obtaining money stealing passwords and selling or misusing them.
This presentation is focus on how to protect our accounts and with this also keep sure our digital identity, our image and also our money safe from hackers businesses.

Published in: Internet
  • Be the first to comment

  • Be the first to like this

Passwords for sale

  1. 1. Twitter: @ramirocid Ramiro Cid | @ramirocid Passwords for sale
  2. 2. Twitter: @ramirocid 2 Index 1. Password for sale, just another dark business Slide 3 2. Some passwords leak figures in the last years Slide 4 3. How to check if my account have ever leaked? Slide 5 4. Best practices in the use of passwords Slide 6 5. Sources used to expand knowledge Slide 7
  3. 3. Twitter: @ramirocid In the last years we are reading more and more news about massive (millions) breach of  passwords in web services as communities, emails services, cloud services and others. Hackers simply are obtaining money stealing passwords and selling or misusing them. This presentation is focus on how to protect our accounts and with this also keep sure our digital  identity, our image and also our money safe from hackers businesses. 1. Password for sale, just another dark business
  4. 4. Twitter: @ramirocid  Yahoo 1.000 million passwords (happened on 2013 but disclosed on 2016)   Gmail 272 million passwords  MySpace 164 million passwords (on 2016)  eBay 145 million passwords   LinkedIn 164 million passwords  Dropbox 68 million passwords  (happened on 2012 but disclosed on 2016)  Evernote 50 Million password (on 2013)  Twitter 33 million passwords (on 2016) 2. Some passwords leak figures in the last years
  5. 5. Twitter: @ramirocid Using services like ‐> a free web service to  check if our accounts are safe. The website collects leaked data and has information on over a  thousands of millions leaked accounts from different websites.  If your email address appears in their records you should change your password on the affected  accounts immediately.  Selecting a strong password and having a unique password for each account is of course an  essential prerequisite (best way is to use a password manager application). You can also subscribe to notifications in case your account details are leaked in future to try  similar services as or hacked‐ 3. How to check if my account have ever leaked?
  6. 6. Twitter: @ramirocid Web services get hacked and user credentials get stolen, sold and misused. With the increasing number of web services comes the greater chance that some of them will be insecure and eventually breached. Nobody can’t control how a website protects your login credentials on their servers, but there are smart things we can do to protect ourselves and minimise the damage in case a breach happens: Use strong and unique password for each account Check if your email account information has leaked and change your password on affected website(s)  immediately (if you used the same password on multiple sites, which is no recommended, change your password on  those sites as well) Use a password manager to safely store your passwords Use 2‐step authentication wherever available Subscribe to notifications in case your account details are leaked in future 4. Best practices in the use of passwords
  7. 7. Twitter: @ramirocid  World's Biggest Data Breaches | information is URL:  List of data breaches | URL:  The Worst Data Breaches of All Time | tom’s URL:  The History of Data Breaches | Digital guardian URL: 5. Sources used to expand knowledge
  8. 8. Twitter: @ramirocid Questions? Many thanks ! Ramiro Cid CISM, CGEIT, ISO 27001 LA, ISO 22301 LA, ITIL @ramirocid