News of a new data breach happening at a large company fills the headlines so often that we’ve almost become numb to it today. That is, until the latest breach has the potential to affect close to one hundred million people and when that breach could have leaked personal identifying information different than anything we’ve seen before in the headlines – someone’s DNA.
This week’s news of the security issue announced by MyHeritage website fortunately didn’t go that route.
The DNA testing and genealogy site uses swabs of DNA mailed in from people across the globe to help them uncover their unique family history.
According to company officials, the emails and passwords – which were hashed – were the only information pieces accessed when a security researcher found a file containing the information on an outside server.
The company has since added two-factor authentication for users and is offering 24/7 support for anyone with concerns about the incident.
While there is no proof that any of the information was used and important DNA and financial data of users are stored on different, more secure servers, this incident has still created a discussion around data security needs and the best way to combat threats.
Two-Factor Authentication (2FA) adds an extra layer of security by prompting users to have an additional piece of self-identifying information to gain access to online accounts. This has become an especially important tactic as cybercrime rates soar to protect users and their personal data as well as businesses. This extra credential goes a step further than usernames and passwords for authentication to discourage cybercriminals from stealing personal information usually for financial gains.
There are a number of different forms of 2FA today from push notifications to fingerprints, software tokens and even voice-based messages that provide a code verbally. Finding the option that best protects a business’s sensitive data from hackers is critical.
More on Encryption
Other advanced forms of encryption are becoming essential today to protect users and businesses from an increasingly digital lifestyle where hacks are commonplace. In some industries those requirements are also the law.
ASG Information Technologies works with businesses to provide managed IT services they need to be productive, profitable and protected. The company’s Network & Data Security and Advanced Security Services can help with compliance standards as well as provide necessary security training and testing to protect your business.