“These companies say they’re already secure and don’t need to spend money on it. Then we pull out passwords and social insurance numbers,” said Terry Cutler, chief technology officer at security firm Digital Locksmiths.
Cutler said such breaches happen when there isn’t a comprehensive security policy that comes from the top and touches all staff.
“They need to do a full audit. Email is just one piece of the machine,” he said. “If someone was able to intercept their email in plain text, they have much bigger problems.”
I’m a government cleared cybersecurity expert (a Certified Ethical Hacker), and the Vice-President of Cyber at SIRCO, an investigations and protections firm in Montréal, Canada.
I’m also a frequent contributor to National & Global media reportage about cyber-crime, spying, security failures, internet scams, and the real social network dangers that families and individuals face every day.