Home > United Nations Online Network in Public Administration and Finance (UNPAN)
1. Global
Global
2. Africa
Africa
3. Arab States
Arab States
4. Asia & Pacific
Asia & Pacific
5. Europe
Europe
6. Latin America & Caribbean
Latin America & Caribbean
7. North America
North America
UNPAN Asia & Pacific




Public Administration News  
Share
UK and Aussie Governments Sign Up to Breach Aggregation Site
Source: www.infosecurity-magazine.com
Source Date: Friday, March 02, 2018
Focus: Citizen Engagement, Institution and HR Management
Country: Australia
Created: Mar 05, 2018

The British and Australian governments have begun working with a popular breach aggregation site toThe British and Australian governments have begun working with a popular breach aggregation site to monitor their domains.

The National Cyber Security Centre (NCSC) and Australian Cyber Security Centre (ACSC) will now avail themselves of centralized monitoring on Troy Hunt’s Have I Been Pwned? site.

The NCSC posted the announcement on Twitter this morning:

“We’re excited for the opportunity to work alongside Troy and we’re looking forward to trialing the use of his service in the coming weeks to help alert UK government departments if their users have potentially compromised credentials.”

Noted security researcher and Microsoft regional director Hunt collates breached credentials and allows legitimate users to query the site for free to see if their log-ins may have been compromised.

However, there’s also a commercial service which allows companies to get notifications whenever their credentials turn up in breached data loaded into the site’s back-end database.

The NCSC and ASCS will be able to query on-demand and make use of this commercial service, although they won’t be charged, according to Hunt.

“Every time an alias on one of their domains is seen in a new data breach or a paste, the incident is automatically posted to them. It means that within minutes of one of their email addresses being found and loaded into HIBP, they'll know about it. That's really important in terms of giving them the ability to respond quickly and by unifying all those existing one-off domain searches, the respective governments will be able to immediately see when an incident has a potentially broad impact,” he explained.

“This can be especially important when you consider data breaches such as Dropbox; many organizations of all kinds suddenly learned that a bunch of their people had cloud storage accounts under their corporate email addresses so you can imagine some of the discussions that subsequently ensued."

(By Phil Muncaster) monitor their domains.
News Home

 Tag This
 Tell A Friend
 Favorite
del.icio.us digg this Slashdot
Rate:
0 ratings
Views: 168

Comments: 0 Favorited: 0 Bookmarked: 0 Tagged: 0



0 Comments | Login to add comment

Site map | FAQs | Terms and Privacy | Contact Us
Copyright 2019 by UNPAN - United Nations Public Administration Network