Krebs is reporting that Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting goods, leaked hundreds of internal passwords on Pastebin.com for several weeks last month, exposing credentials the company used to manage everything from firewalls and routers to administrator accounts and database servers, KrebsOnSecurity has learned. Orvis says the exposure was inadvertent, and that many of the credentials were already expired.
Experts have commented below.
Experts Comments
Linkedin Message
@James McQuiggan, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"It is more effective to have a proper password management system for organisations. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-comments-on-orvis-com-leaked-internal-passwords-on-pastebin
Facebook Message
@James McQuiggan, Security Awareness Advocate, provides expert commentary at @Information Security Buzz.
"It is more effective to have a proper password management system for organisations. ..."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-comments-on-orvis-com-leaked-internal-passwords-on-pastebin
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Jonathan Deveaux, Head of Enterprise Data Protection, provides expert commentary at @Information Security Buzz.
"Orvis is fortunate that no reports of customer data were leaked...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-comments-on-orvis-com-leaked-internal-passwords-on-pastebin
Facebook Message
@Jonathan Deveaux, Head of Enterprise Data Protection, provides expert commentary at @Information Security Buzz.
"Orvis is fortunate that no reports of customer data were leaked...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/experts-comments-on-orvis-com-leaked-internal-passwords-on-pastebin