have you got a good tan lineOriginally Posted by Naughtynatalie
Holidays honey, sun, sea & excessive partying
you missed me?
Established Member
Certified E-I Addict
have you got a good tan lineHolidays honey, sun, sea & excessive partying
you missed me?
Established Member
Certified E-I Addict
I wouldn't worry about it, I'm sure the IT guys in E-I will be able to stop any attempt at hacking
This really is very worrying???
Stay calm and post a meme.
I would if I could.
EI would be an inevitable target
Bigger fish to fry in other countries I would imagine.
For anyone interested i have been keeping up on the Ashley Madison thing, primarily coz I hate the idea of privacy breaches, its one thing that really grinds my gears, everyone is entitled to privacy, that aside.
an internal investigation in Ashley madison revealed that all signs pointed to an "inside job" and an employee has come forward voicing their moral opinions which are not in line with company policies. This employee was already one of the prime suspects before voicing their opinions also, so that doesnt help they had access to the data.
essentially, they were not hacked, someone inside stole the data, made a copy of themselves and their own moral agenda.
Ashley madison also confirmed that no external entry to their systems was made, as in, noone from outside hacked in and stole the data, so they are still secure from that type of attack, but you cant protect from your own employees in all circumstances, as with any company, im sure they had a non disclosure agreement and employees agreed to the data protection acts set down and policies which they then breached.
Finally for EI, as someone said before, age old question, they just simply do not delete account information, some of the reasons stated is effort and that if posts were removed it may make threads unreadable or nonsense which contributes to a community. In response to that i would say, everything is dependant on a database, all those posts are linked to the username. Banned users can no longer post so thats a start. But if they were for example to simply rename an account to "deleted user" and delete any history of ip connection, email information and anything personally identifiable.removing only such information would be less effort, and surely can be automated in this day and age with a database script or trigger. sure you are clearing out some records in a database table somewhere, but you also dont need to delete everything, you can maintain the posts. good database design would allow for such a thing as happens on many other sites out there. in this way users could be removed, or protected if they ever chose to leave having their essential information scrubbed.
p.s. in ireland a user can also request from any source which holds information on them for a copy of the information they have, its a legal requirement, and they must be allowed to make ammendments where they feel the information is incorrect. e.g if you wanted to change email address. or felt it was impacting your privacy you can request the company not store your connection history where the company concerned is considered at risk (e.g weak security/hacking threat)
it is up to the company to ensure their users information is protected or they are liable for the consequences of the data being released. also a reason ashley madison did an investigation, e.g. if someone sues them because the spouse found out a files for a divorce, ashley madison will be paying out for not having protected and the financial losses of their customers as a product of that. a knock on effect.
nonpareil (22-07-15)
Established Member
Certified E-I Addict
What are the chances Ashley Madison and E-I were both hacked and lots of wives are exposed as having affairs at the same time their husbands are exposed as seeing escorts
Karma
funlover12 (22-07-15)
experts say most hacks are done in more traditional fashion. I wont name the major irish business that recently cliamed to be hacked. It was basically somebody sending in a request to change invoice details with the admin. then sending in an invoice a few days later for X000000amount. Job done. Major company got stung because they still did paper work and didnt fact check.
Posting Permissions
Reply With Quote
