901
Comments (57)
sorted by:
You're viewing a single comment thread. View all comments, or full comment thread.
3
ca18det 3 points ago +4 / -1

It really depends on the controls in place. Is the file itself encrypted at rest? Is the SHA256 checksum of the file stored in a tamper proof section of hardware with an audit trail? Is the file cryptographically signed using a secure PK?

1
Brooklyn_Patriot_76 1 point ago +1 / -0

you forgot the s/

1
ca18det 1 point ago +2 / -1

While the controls in place almost certainly are not adequite that doesn't mean human readable formats are inherently unable to be secured. Most of the internet traffic has json bodies and it's encrypted via SSL.

Kneejerk techlets don't need to REEE when people rightly point out that security controls can and do exist for sensitive data. We need more information.

2
Brooklyn_Patriot_76 2 points ago +2 / -0

I would wager that it's not encrypted. based on the video of that douche pulling the data onto his thumb drive, opening it on his laptop in Excel, filtering it and bouncing? no way.