|
|
|
|
|
|
by ROARosen
1518 days ago
|
|
|
This artice just begs more questions: Why did they store PII, Identity documents unencrypted? What exactly was the reason for this breach? Why did it take VPNOverview's team a day to notify them? What did VPNOverview do with all that data until they notified Grink and afterwards? Why did it take Grink 22 days to secure the files? Why does the article describe the above as "as swiftly as possible"? Can Grink be fined/sued over this, or is that only possible once there is 'actual damage' proven? |
|
|
Because it’s easier to store and retrieve them unencrypted than encrypted
> Why did it take VPNOverview's team a day to notify them?
Sure, shoot the messenger. It does not say 24 hours. Maybe they discovered the breach at 10:00 PM local time and sent a notification at 6:00 AM the next morning.