Deal with password theft

There is nothing quite as sacred as your password. And that's why it is increasingly frustrating when hackers steal it. In a recent case, it was disclosed that attackers stole passwords and accounts from 92 nonprofits by infiltrating systems at Convio, the leading online marketing company for nonprofit organizations. What's a CIO to do? Come back with a vengeance and throw up a bullet-proof system to protect your most basic assets like passwords. Convio sent a letter to one affected company disclosing that email addresses and passwords were downloaded without authorization between Oct. 23 and Nov. 1.

But that's not all. Convio is taking a number of steps to deal with the theft. It's in the process of rewriting the functionality that it gets from the GetActive application into a native version on its own system. Convio has also created a query within its dashboard that can be used to identify which members of an organization's list might be affected. This is a headache for just about anyone, but you can ease it by having a plan in place if you are hacked, too. Tell us about your plans in a theft like this.

To deal with password breaches:
- See this eWeek article