Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Passwords for sale

160 views

Published on

In the last years we are reading more and more news about massive (millions) breach of passwords in web services as communities, emails services, cloud services and others.
Hackers simply are obtaining money stealing passwords and selling or misusing them.
This presentation is focus on how to protect our accounts and with this also keep sure our digital identity, our image and also our money safe from hackers businesses.

Published in: Internet
  • Be the first to comment

  • Be the first to like this

Passwords for sale

  1. 1. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid Ramiro Cid | @ramirocid Passwords for sale
  2. 2. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid 2 Index 1. Password for sale, just another dark business Slide 3 2. Some passwords leak figures in the last years Slide 4 3. How to check if my account have ever leaked? Slide 5 4. Best practices in the use of passwords Slide 6 5. Sources used to expand knowledge Slide 7
  3. 3. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid In the last years we are reading more and more news about massive (millions) breach of  passwords in web services as communities, emails services, cloud services and others. Hackers simply are obtaining money stealing passwords and selling or misusing them. This presentation is focus on how to protect our accounts and with this also keep sure our digital  identity, our image and also our money safe from hackers businesses. 1. Password for sale, just another dark business
  4. 4. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid  Yahoo 1.000 million passwords (happened on 2013 but disclosed on 2016)   Gmail 272 million passwords  MySpace 164 million passwords (on 2016)  eBay 145 million passwords   LinkedIn 164 million passwords  Dropbox 68 million passwords  (happened on 2012 but disclosed on 2016)  Evernote 50 Million password (on 2013)  Twitter 33 million passwords (on 2016) 2. Some passwords leak figures in the last years
  5. 5. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid Using services like HaveIbeenPwned.com ‐> https://haveibeenpwned.com/ a free web service to  check if our accounts are safe. The website collects leaked data and has information on over a  thousands of millions leaked accounts from different websites.  If your email address appears in their records you should change your password on the affected  accounts immediately.  Selecting a strong password and having a unique password for each account is of course an  essential prerequisite (best way is to use a password manager application). You can also subscribe to notifications in case your account details are leaked in future to try  similar services as leakedsource.com or hacked‐db.com. 3. How to check if my account have ever leaked?
  6. 6. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid Web services get hacked and user credentials get stolen, sold and misused. With the increasing number of web services comes the greater chance that some of them will be insecure and eventually breached. Nobody can’t control how a website protects your login credentials on their servers, but there are smart things we can do to protect ourselves and minimise the damage in case a breach happens: Use strong and unique password for each account Check if your email account information has leaked and change your password on affected website(s)  immediately (if you used the same password on multiple sites, which is no recommended, change your password on  those sites as well) Use a password manager to safely store your passwords Use 2‐step authentication wherever available Subscribe to notifications in case your account details are leaked in future 4. Best practices in the use of passwords
  7. 7. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid  World's Biggest Data Breaches | information is beautiful.net URL: http://www.informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/  List of data breaches | Wikipedia.org URL: https://en.wikipedia.org/wiki/List_of_data_breaches  The Worst Data Breaches of All Time | tom’s guide.com URL: http://www.tomsguide.com/us/pictures-story/872-worst-data-breaches.html  The History of Data Breaches | Digital guardian URL: https://digitalguardian.com/blog/history-data-breaches/ 5. Sources used to expand knowledge
  8. 8. ramirocid.com ramiro@ramirocid.com Twitter: @ramirocid Questions? Many thanks ! Ramiro Cid CISM, CGEIT, ISO 27001 LA, ISO 22301 LA, ITIL ramiro@ramirocid.com @ramirocid http://www.linkedin.com/in/ramirocid http://ramirocid.com http://es.slideshare.net/ramirocid http://www.youtube.com/user/cidramiro

×