Weekly update 12

Sponsored by: Terbium Labs — Try Matchlight for free. Fully automated, full private Dark Web Data Intelligence.

This was a pretty jam-packed week which kicked off with the crazy, crazy Indian pathology data leak. You’ll sense my frustration with the whole thing and frankly, I still can’t quite get over it. Be that as it may, stuff like this provides us with endless material that speaks to how badly wrong it can all go with any data that gets digitised. There’s that and a bunch of HIBP bits in relation to the AMA I did earlier this week and the 1.4 billion records I made available for analysis. All that and more this week!

iTunes podcast | Google Play Music podcast | RSS podcast


  1. Pathology data spilled all over the place in India (down syndrome tests, HIV tests and more – all public)
  2. Reused credentials used on your site – are you responsible? (this is an interesting discussion in terms of how you can defend against this sort of thing)
  3. HIBP turned 3 so I answered a bunch of questions (the recording of the live stream is now on the blog from last week)
  4. Oh – I also gave away 1.4 billion records (they’re de-identified and don’t include sensitive breaches)
  5. I broke my CSP (again) so many people couldn’t donate to me (I want content security policies to be good, I really do, but they’re still super risky)

Leave a Reply