Newsflash – US Nuclear secrets leaked online through Shadow IT

by | Jun 16, 2021 | Security

This sounds like a nightmare that could never happen.

US soldiers have been putting sensitive information online in non-secure third party websites. It defies belief, yet we’re reading that it happened. The story popped up on ‘Gizmodo’ .

It is alleged that US Soldiers were saving sensitive information on a couple of common flashcard sites, presumably of things they were trying to memorise and learn.  It seems these are common learning tools used in universities to help students memorise facts.  That works well so long as the facts aren’t top secret!  Even worse, their settings were on ‘public’ not ‘private’!

It is a classic warning about the risk of people, however well intentioned, saving critical data online in places the organisation is unaware of, and can’t control. That’s why our KARE FOUNDATION proactive cyber-security plan helps identify use of these sites in your organisation.

For more detail : Why you need to know all the cloud services that your organisation uses – part 2 – (US DoD Nuclear Secrets!) – IT Solutions and Managed Services (kinetics.co.nz)

Shadow IT is part of our 10-point cyber-security check list

While there is no single layer of technology that can guarantee you will be safe from hackers, you can reduce your risk by adding layers of protection. How many of our 10-point check list are in place for you?

What does the LastPass breach mean for you?

What does the LastPass breach mean for you?

There have recently been a couple of well-publicised breaches of LastPass.  Most people will be familiar with LastPass but in case you are not, it’s a well-known and popular password vault/manager.Does this mean you shouldn’t use a password vault? Absolutely not.  YOU...

Are you making the most of your password manager?

Are you making the most of your password manager?

Passwords are the basic protection for our various online accounts.  It amazes me how basic some people’s passwords are.  Passwords like, well ‘password’ or ‘123456’ are still commonly in use!  In case that sounds unbelievable, here’s a list of the top 200 for...

Is your cyber-insurer testing your business?

Is your cyber-insurer testing your business?

Over the last month, we’d heard about this happening in the US and now it seems to be happening in NZ as well. Cyber insurers are working hard to mitigate their risk and that includes stepping up their testing of their clients. Right now, that appears to be more...

Is public WiFi safe?

Is public WiFi safe?

Free public WiFi can be tempting.Whether it is in cafe, an airport or a shopping centre, free Wi-Fi is very tempting. Who wouldn’t want faster data, without the cost. But, as with anything that is free, be very careful! It is very easy to become a victim of something...

What can you expect if you get crypto-locked?

What can you expect if you get crypto-locked?

!Right now, there’s a crypto-locked server in the lab in our Kinetics Auckland Office. It’s not from one of our clients, but a business that’s come to us, after the event, asking for help. We are busy rebuilding it and restoring the data and configuration to the...

MFA is important, but it is no silver-bullet.

MFA is important, but it is no silver-bullet.

There are no silver bullets. No one can guarantee you won’t be hacked, but we can make it harder. We can reduce your cyber-risk by taking reasonable steps to make it harder to hack you. The key is to have layers of security, and to keep reviewing the technology in use...