Organizations need a methodology to assess the IT defenses of their vendors and business partners.
Facebook suffered two separate data breaches in 2019 that were traced to third-party companies that lacked sufficient controls to protect authentication credentials, Wired reports. One third party left 540 million access credentials exposed on a publicly accessible server, and a second company did not protect 22,000 user IDs and passwords.
