It might be difficult to safeguard your data after it’s been compromised, but you can protect yourself next time with threat modeling.
This was an email I sent to my vCISO / CISO As A Service clients this morning. Since they do not have their own CISOs or security teams, it is likely that they would not have found out about this for awhile. They do have strong IT teams though, so I provided instructions and actions they can take internally.
We all know that sharing our passwords is a bad idea and we are not supposed to do it, but if we ask a random person why, will they be able to iterate why? In this brief article I will walk you through why sharing passwords is not good and the various problems it causes.