BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

How Much of Your Data Can Be Found on the Web?

Posted June 1, 2010    Morey Haber

I came across another website that invades my personal privacy and makes my personal data available to anyone that searches my name. While the results are not 100% accurate, the amount of correct information returned is rather alarming.

What makes it more disturbing is that they provide a vehicle to remove your information and also try to solicit a vendor that helps remove your information.

This reminds me of fake antivirus programs trying to sell their product to mitigate a bogus threat, but in this case they actually know where I live!

My final insult to this invasion is that I do not want to be hidden from the internet. My livelihood depends on you finding this blog and other articles that I write so it is in my best interest not to try to hide my information, but I certainly want to hide personal data from websites like this.

So what’s a user to do? In all honesty, there is not much I can do. I own a home and therefore have a public record of my property, have been married, and therefore a license exists, and I exist on several social media websites. At this point in the game, nothing will erase me from the internet and remove my personal information except for a witness protection program.

So what’s the purpose of this blog? Simply to raise awareness that these sites exist and that if you participate in activities on the web, your data is available to sites like this as well.

To that end, I’ve compiled a quick list of sites for you to check your own exposure and request removal (if possible) as well:

This list is by no means complete. Paid sites like AutoTrack provide many more details, but some of the free ones listed above are just as eerie with the details they provide. If you doubt your privacy, take a look. If you’re worried, try searching with your children’s names; hopefully you get no data. Luckily, places like Spokeo will not publish information for minors if they can associate an age with the data. Once they hit 18 however, all their data is fair game.

Leave a Reply

Additional articles

6

A Quick Look at MS14-068

Posted November 20, 2014    BeyondTrust Research Team

Microsoft recently released an out of band patch for Kerberos.  Taking a look at the Microsoft security bulletin, it seems like there is some kind of issue with Kerberos signatures related to tickets. Further information is available in the Microsoft SRD Blogpost So it looks like there is an issue with PAC signatures.  But what…

Tags:
, , , ,
Password Game Show

Managing Shared Accounts for Privileged Users: 5 Best Practices for Achieving Control and Accountability

Posted November 20, 2014    Scott Lang

How do organizations ensure accountability of shared privileged accounts to meet compliance and security requirements without impacting administrator productivity? Consider these five best practices…

Tags:
, , , , , ,
Triggering MS14-066

Triggering MS14-066

Posted November 17, 2014    BeyondTrust Research Team

Microsoft addressed CVE-2014-6321 this Patch Tuesday, which has been hyped as the next Heartbleed.  This vulnerability (actually at least 2 vulnerabilities) promises remote code execution in applications that use the SChannel Security Service Provider, such as Microsoft Internet Information Services (IIS). The details have been scarce.  Lets fix that. Looking at the bindiff of schannel.dll, we see a…

Tags:
, , , , ,