Breach analysis, digital self-defense, and what the fine print actually says.
A misconfigured guest user setting on Salesforce's Experience Cloud platform gave one of the internet's most prolific hacking groups access to data from Snowflake, Okta, LastPass, Sony, AMD, and Salesforce itself. The lesson: your default settings are the attack surface.
Read the full analysis in Chapter 38 →Conduent processes benefits, healthcare, and government services for over 100 million Americans. Attackers were inside their systems for three months and stole 8 terabytes of data. Most affected individuals had never heard the company's name.
Why third-party processors are your biggest blind spot →The company that knows your credit history, court records, shopping habits, and political leanings confirmed that their own servers were compromised. The data broker got data-brokered. We graded them in Chapter 29.
Read the LexisNexis breakdown →You can't delete your Social Security number. You can't change your date of birth. You can't rotate your medical history. When this data leaks, it's compromised for life. Here's what that actually costs you.
Start with Chapter 1 →Weather apps scored worse than most social networks. Signal earned the highest grade but still has gaps. And the platform that collects the most data per session might not be the one you'd guess.
See the full grading matrix →