X

Thank you for sharing!

Your article was successfully shared with the contacts you provided.

When senior Wired writer Mat Honan got hacked earlier this month, he lost eight years’ worth of emails, and everything on his laptop, iPhone, and iPad—from documents to photos of his baby daughter. It was a highly personal loss, though one writ large against the forces confronting just about every plugged-in person and company: the increasing frequency of cyberattacks, weaknesses in data security policies and practices at major corporations, and the approaching ubiquity of cloud computing. For the in-house lawyers in the room, then, it’s worth reviewing what happened to Honan with an eye toward company oversight—illustrated by a new survey of general counsel and corporate directors, and an interesting idea the U.S. Department of Energy is proffering about corporate governance and cyber-risk. Reporter that he is, Honan methodically investigated how he got hacked. While he takes responsibility for his own lapses—like not backing up his data and “daisy-chaining” together his passwords across services—those mistakes also revealed chinks in the armor at two data-leviathans: Apple and Amazon. From Amazon tech support, Honan’s attackers were able to obtain a partial credit card number. Using those credit card digits with Apple tech support, Honan’s attackers were given access to his iCloud account. Honan, post-digital torching, puts it thus:

In short, the very four digits that Amazon considers unimportant enough to display in the clear on the web are precisely the same ones that Apple considers secure enough to perform identity verification. The disconnect exposes flaws in data management policies endemic to the entire technology industry, and points to a looming nightmare as we enter the era of cloud computing and connected devices.

This content has been archived. It is available exclusively through our partner LexisNexis®.

To view this content, please continue to Lexis Advance®.

Not a Lexis Advance® Subscriber? Subscribe Now

Why am I seeing this?

LexisNexis® is now the exclusive third party online distributor of the broad collection of current and archived versions of ALM's legal news publications. LexisNexis® customers will be able to access and use ALM's content by subscribing to the LexisNexis® services via Lexis Advance®. This includes content from the National Law Journal®, The American Lawyer®, Law Technology News®, The New York Law Journal® and Corporate Counsel®, as well as ALM's other newspapers, directories, legal treatises, published and unpublished court opinions, and other sources of legal information.

ALM's content plays a significant role in your work and research, and now through this alliance LexisNexis® will bring you access to an even more comprehensive collection of legal content.

For questions call 1-877-256-2472 or contact us at customercare@alm.com

Lean Adviser Legal

Think Lean Daily Message

"Nothing gets the hungry lawyer s juices flowing like a big new project, but the temptation to dive in and start lawyering must be resisted. Planning comes before execution. And it is incumbent on the lawyer, not the client, to initiate that planning."

Learn More

 

ALM Legal Publication Newsletters

Sign Up Today and Never Miss Another Story.

As part of your digital membership, you can sign up for an unlimited number of a wide range of complimentary newsletters. Visit your My Account page to make your selections. Get the timely legal news and critical analysis you cannot afford to miss. Tailored just for you. In your inbox. Every day.

Copyright © 2018 ALM Media Properties, LLC. All Rights Reserved.