all InfoSec news
Company storing SSNs in plaintext in MSQL database
Sept. 9, 2023, 1:50 p.m. | /u/FloorOk74
cybersecurity www.reddit.com
I joined a small software company that sells CRM/Accounting software in early 2022 as a software developer and it recently came to my attention that in our client databases, we hold the SSNs of employees in plaintext.
I asked the senior engineer about it, and he said that the encryption on the MSQL server was sufficient and that I shouldn’t worry. I didn’t agree, voiced my concerns but nothing came of …
accounting accounting software attention client crm cybersecurity database databases developer employees engineer joined plaintext software software developer
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Offensive Security Engineer
@ Ivanti | United States, Remote
Senior Security Engineer I
@ Samsara | Remote - US
Senior Principal Information System Security Engineer
@ Chameleon Consulting Group | Herndon, VA
Junior Detections Engineer
@ Kandji | San Francisco
Data Security Engineer/ Architect - Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700