According to Verizon, no data was accessed by an external source, but at the end of the day, the data was exposed publicly and discovered by a security researcher. I do not believe a definitive statement can be made as to who may or may not have discovered and harvested data.
I recommend every Verizon customer at least call Verizon support and change your pin. You should also remain diligent in checking for unusual account activity.
I read this book a couple of years ago, and at the time, I was employed by a rather large regional retail organization dealing with very similar issues. I found myself replacing the names of the characters in the book with those of my own co-workers as I read and suffering a profound sense of deja vu. I cannot recommend this book strongly enough to anyone working in or with a business of any significant size, in IT or not. Gene Kim and team have put together a story both entertaining and truly educational. You will come away with an eyeopening respect for DevOps, business goals, and the role of IT in business.
I had the pleasure of meeting Gene at a conference not long after the book came out and my respect for him and his mission to educate the world on the challenges of effective devops has only grown since.
This document has a wealth of valuable information mined from a pool of experts that are known for both their honesty and their bluntness. If you want an honest, straight-forward understanding of the cybersecurity threat landscape, this is an excellent read.
On the heels of a tremendous milestone (100,000,000 certificates issued), Let’s Encrypt has announced the option of wildcard certificates in 2018. These advances are a great step in the right direction for a safe, encrypted world wide web.
This article is concerning, but not particularly surprising. Industrial security controls have, for far too long, been focused on obscurity and not true controls and monitoring.
I agree completely with these five steps. I would particularly focus on end user awareness training and vulnerability life cycle management.