Comments

I guess “secure” doesn’t mean what it means. Maybe secure, open, audited, and transparent would be better.

Key Points:

  • U.S. Internet, an internet service provider with a secure email service offering, exposed years of internal and customer emails online.
  • The leak included emails dating back to 2008, affecting thousands of customers and employees, including government agencies.
  • The cause was a misconfigured security setting, reportedly due to a mistake by a former employee.
  • The company has not disclosed the duration of the leak or how many users were affected.
  • Security experts criticize the lack of transparency and urge regulators to investigate.

Additional Information:

  • The leak include internal emails of every U.S. Internet and subsidiary USI Wireless employees.
  • Hackers exploited a U.S. Internet service to redirect users to malicious websites.
  • U.S. Internet hasn’t responded to inquiries about the incident or implemented public disclosures.

Overall:

This data breach highlights the importance of robust security measures and transparency in protecting sensitive information. The large-scale exposure of emails raises concerns about potential damage to individuals and organizations, while the company’s response is seen as inadequate by experts. Further investigation and stricter regulations may be necessary to address such security failures.

  • stevedidwhat_infosec
    link
    fedilink
    English
    arrow-up
    8
    ·
    10 months ago

    Because “US Internet” as a company name wasn’t already sign enough of lack of caution or care in what they set out to do 😂