Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
I agree with this, passwords are hashed, what about APIs, SSL/TLS as they are more serious.
That is true, accounts since Sept 15th 2017. Most likely they were using different system prior to that, or that is when they started the business. :--))
I say, it is a good question to ask, obviously.
Not clear, this this data exposed by itself or hacked? Or, we are looking at another human mistake?
- On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017.
- Elements of our Incapsula customer database through September 15, 2017, were exposed. These included:
- email addresses
- hashed and salted passwords
And for a subset of the Incapsula customers through September 15, 2017:
- API keys
- customer-provided SSL certificates
The Year in Security: 2019This Tech Digest provides a wrap up and overview of the year's top cybersecurity news stories. It was a year of new twists on old threats, with fears of another WannaCry-type worm and of a possible botnet army of Wi-Fi routers. But 2019 also underscored the risk of firmware and trusted security tools harboring dangerous holes that cybercriminals and nation-state hackers could readily abuse. Read more.
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industry’s conventional wisdom. Here’s a look at what they’re thinking about.
Tweet This
4 Comments
User Rank: Apprentice
9/3/2019 | 12:18:59 PM