All companies will have a security incident at some point. The standard for success should not be "zero incidents." Companies should notify customers when their data is compromised. Companies should have the ability to identify an incident as quickly as possible and to provide timely response and remediation to that incident.
Many companies don't do what they should. Therefore, consumers must also act to protect their data and their data. Two simple strategies to get started:
- Change your password as soon as you are aware that a service you use has been compromised. Just in case, change your passwords periodically (at least annually). This will ensure that you have less risk when companies fail to honour their duty to provide notification.
- Use an effective password manager to ensure that everything you log into has a unique password. This prevents a problem at one organization from affecting other services you use BECAUSE each service uses a different password that is random and complex.
Warning As 26 Billion Records Leak: Dropbox, LinkedIn, Twitter Named - https://www.forbes.com/sites/daveywinder/2024/01/23/massive-26-billion-record-leak-dropbox-linkedin-twitterx-all-named/?sh=f34dd91ab58e