We rely more and more on data and databases to manage both our personal lives and our businesses. However, recent high-profile data breaches—such as those involving Optus and Medibank—have raised serious concerns about data security and how to secure your database. With ransom attacks on the rise, it’s no surprise that many people are now questioning how safe their data really is.
At Optus, the breach occurred through an unprotected API that was publicly accessible. Since it didn’t require a username or password, anyone who discovered the API’s address could connect to it without any authentication.
In contrast, the Medibank breach happened after a single user’s credentials were stolen and sold on the dark web. These credentials were then used to download millions of highly sensitive personal records.
Adsafe, one of our long-standing clients, recently reached out during a security audit to explore ways to enhance their database security. Their primary concern was the risk of password attacks. These attacks occur when hackers guess or obtain a valid login name and then use either a dictionary or brute-force method to crack the password.
We have already implemented many security measures to ensure that our client’s databases are secure. We’ll explain those steps in more detail in a future post. For Adsafe we focused specifically on strengthening their login security. Here’s what we put in place:
For clients with especially sensitive data, a strong password isn’t always enough. To really secure your database we recommend enabling Two-Factor Authentication (2FA).
2FA is now active on Adsafe’s database and is gaining popularity among our clients. It adds a powerful layer of protection and is simple to use.
If you’re interested in learning how we can help you store your data more securely, please get in touch. We’re here to help you stay one step ahead of cyber threats.
To improve your own password security, follow these simple guidelines: