With the increase of identity theft, companies need to be aware of their greatest weakness which, for many, is their vendors.
“The scary thing is that once most businesses get the stamp of approval, that’s sort of where it stays until they have a reason” to investigate, says Steve Thomas, president of PwnedList, a company that monitors websites that host stolen credentials and other security information. His firm is a division of InfoArmor, which is testing software that scours places like hacker communities and the deep Web to provide firms with real-time security reports about their vendors.“Doing things in real time allows you to be preventative,” Mr. Thomas says. “If you can identify compromised credentials or a compromised vendor, you can take action or prevent ones that will soon follow.”
Read the full Wall Street Journal here.