[Informatics] Security breaches and disclosure

[Roland Gesthuizen]

Thanks Donna, this is a great case study to share with my VCE students, nicely spanning databases, security and ethics!

With no SSL anywhere and all communications over unencrypted connections. The last point is interesting. The heavy reliance on Flash and Microsoft ASP.NET 2.0 implies that it was made and just left out there.  .. that is going to hurt.

How many companies regularly audit (and test) their data and online server security for both new products, and again for their new products? Consumer products have a potential usage lifetime that extends beyond the original sales period and online server funding. 

Vehicle manufacturers, please take note.

regards Roland


> On 28 Nov 2015, at 8:29 am, Donna Benjamin <donna at cc.com.au> wrote:
> 
> Hello all!
> 
> Here's another data breach that might be interesting for discussion of 
> 
> ITI U3O1 KK 1-techniques used by organisations to acquire data through their interactive online solutions and reasons for their choice
> 
> "The personal information of almost 5 million parents and more than 200,000 kids" has been exposed from toy maker Vtech.
> 
> Troy Hunt goes into the nitty gritty here:
> 
> http://www.troyhunt.com/2015/11/when-children-are-breached-inside.html
> 
> It's one thing to "acquire" data, what about storing and protecting that data?
> 
> - Donna
> _______________________________________________
> http://www.edulists.com.au - FAQ, resources, subscribe, unsubscribe
> VCE Informatics Mailing List kindly supported by
> http://www.vcaa.vic.edu.au/vce/studies/infotech/itapplications3-4.html - Victorian Curriculum and Assessment Authority <br>
> http://www.vitta.org.au  - VITTA Victorian Information Technology Teachers Association Inc <br>
> http://www.swinburne.edu.au/ict/schools - Swinburne University