Hidden in the News International phone-hacking chat that was going on on Twitter last night, it emerged that the Twitter account for PayPal UK had itself been hacked and defaced.
With Twitter in particular, and mobile phone voicemail in general, it's amazing that we now have such sensitive information services and communication channels protected by very weak, single-factor authentication. The average voicemail account has a four-number PIN protecting it. Twitter accounts have slightly more complex passwords, but ones that you can imagine for big brands are shared extensively by people in marketing and PR teams.
The average InfoSec person would probably say that this is indication that complex security is needed at all levels and on all systems. For me, though, it points to how much personal accountability everyone needs to take these days for the security of their information actions…
mmitII 