Like when I read 3 Billion National Public Data Records with SSNs, Addresses Dumped Online, am I supposed to access that data dump or something to see if I got pwned? Are there equivalents to haveibeenpwned.com for this type of stuff? Any guides on what to do when these happen? I feel like I’m doomscrolling or watching the news, and feeling depressed about the world as a result because I should be doing something but I can’t or it seems like I can’t.
Even though I know better than to put such personal info online, but that doesn’t eliminate the odds of them getting into breaches like these, and having started to be careful about digital privacy has opened my eyes to the sad state of privacy.
That’s the fun part, you don’t
look on the bright side, most of these are more likely leaks instead of breaches – following the discussions around Crowdstrike and it’s pretty clear that getting the box checked on the compliance form takes priority over any actual security measures
Can you kindly tell me the difference between a leak and a breach?
Leak = some employee did a stupid and accidentally released the data publicly. Huge possibility no one ever saw it before it got taken down.
Breach = intentional stealing of data.
Keep as little info on the internet as possible. Falsify as much data as you are allowed to get away with.
this is the only answer. throwaway emails, phone numbers, etc
You dont use a central singular email address, you use dummy throw away ones with fake names. If it gets leaked, minimal damage.