Could you tell me about the report and its findings? Why did you publish it?
Jan Matto, Partner, Mazars
We do a lot of cybersecurity work for our clients and many are unaware of how much information about them is freely available on the internet, waiting to be used by cybercriminals. What began as something we would offer for free to charities expanded into a service that shows businesses what is out there – sometimes including their security information and confidential documents. The report uses publicly available information to show the digital footprint that organisations leave behind and why it needs to be better covered.
Randhir Sewnarain, Cybersecurity specialist, Mazars
As many organisations use third party service providers, control is lost over their data. The purpose of the report is to leave the reader asking, do I want that information to be publicly available? For example, we found passwords that are linked to people’s business accounts that can also be used to log into their social media. Similarly, when organisations develop software, they unknowingly allow the source code to be public, which someone could use to access the security settings and infrastructure. It’s understandable that teams outsource IT, but they should not outsource their security with it.