Security researchers have found a security lapse at Stewart International Airport that exposed server backups to the Internet for more than a year. The backups contained sensitive information including one file with a list of usernames and passwords for various devices and systems, allowing full access to the airport’s internal network. The drive was installed by a third-party IT contractor. Michael Patterson, CEO at Plixer commented below.
Michael Patterson, CEO at Plixer:
“After uncovering an exposed backup system, it is often a good idea to review historical traffic patterns headed to the Internet from the server at risk. This allows security teams to determine if any massive downloads took place. Organizations leveraging 3rd party assistance in IT need to make sure that they hold their contractors accountable and that they adhere to internal security practices. Requiring that they have insurance to help cover the loss from security breaches, should be a serious consideration.”
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Experts Insight On US Pipeline Shut After Cyberattack
Most Active Commenters
Recent Comments
“Cybersecurity Awareness Month’s new evergreen theme "Secure Our World” is…
“Avoid storing data on personal devices: A crucial but often overlooked…
“I recommend a new nuance to passwords that isn’t often…
“In my role overseeing cloud environments and incident response, I'm…
“Cybersecurity Awareness Month serves as a reminder to confront the…