Episode Notes

View transcript

On this episode of the Digital Citizen podcast, Troy Hunt, creator of Have I Been Pwned?, talks to Fastmail CTO Ricardo Signes about data breaches and what organizations and people can do after their data has been involved in one.

Episode Notes

Learn what a data breach is and how it affects companies and individuals alike. Troy highlights his website which allows users to check whether their personal data has been compromised by data breaches. Rik and Troy also discuss the factors which impact the ways organizations respond to a breach, the different types of data breaches, and the Internet of Things (IoT).

▶️ Guest Interview - Troy Hunt

🗣️ Discussion Points

  • Data breaches aren’t limited to large companies and organizations.
  • Users of Have I Been Pwned? are able to see if their data has been compromised in a breach. This information then goes out to both the individual and organizations who monitor domains. Over 4.1 million people have subscribed to the service, which has led to many fascinating cases in which organizations have learned things about the people in their organizations and the risk they create.
  • It’s easy to lose sight of the most important thing which is knowing what has happened after a breach as soon as possible, so passwords can be promptly changed. However, there is no one standard for how an organization should respond to breaches.
  • Though he had hoped GDPR would drive change, Troy sees it used more as a weapon than to change behavior or prevent breaches. Some organizations, such as airlines, are legally obligated by law to obtain customer data for good reason.
  • Comparing the severity of data breaches ranging from household lighting to bank accounts. IoT devices have massively expanded the surface of risk and expose classes of data which had never been digitized before.
  • We don’t have to avoid the internet completely out of fear of being involved in a breach. Rather, we should be more thoughtful about the places we willingly share our data online.

⭐ Takeaways

  • You should use Troy’s website, Have I Been Pwned?
  • Consider minimizing the places you choose to share your personal data in order to keep your account more secure.
  • We should all be talking to our friends and family about why it’s important to keep their data secure.

🔵 Find Us

💙 Review Us

If you love this show, please leave us a review on Apple Podcasts or wherever you listen to podcasts. You can also take our survey and send us a question for our bonus episode.