Actu
Commentary from Fujitsu - Weebly hack
October 2016 by Paul McEvatt, Senior Cyber Threat Intelligence Manager in UK & Ireland at Fujitsu
Following the news that Weebly has been hit by a data breach, below comments from Paul McEvatt, Senior Cyber Threat Intelligence Manager in UK & Ireland at Fujitsu.
“The hack on Weebly once again bring to the surface the shocking realisation facing many organisations today – everyone will be attacked in one way or another. While the fact that 43.4 million accounts are thought to have been stolen is worrying, Weebly is the latest victim, and they will not be the last. Attackers value data as it can be re-used in identity theft but also look to re-use passwords on other online platforms including mail accounts and social media sites such as Twitter and Facebook. Fortunately, Weebly stored passwords hashed with Bcrypt making it harder for those passwords to be cracked easily.
“Attackers will always take the easiest route possible to breach a network so it is vital that organisations across all sectors are proactive before attackers can act such as applying the basics and enabling real-time threat reporting and fast response solutions before a threat becomes a compromise. This should sit alongside a clear and well-rehearsed incident management plan, addressing internal and external communication in addition to containment and recovery activities. It is no longer just about working to prevent attacks, but having a robust strategy in place for when one does happen to address the flaw immediately.”
