Foto de sexso
Having personally received such letters from several card issuers, I can say that none of them even claim that any data was encrypted.
A letter is sent out to customers, stating that although there was a breach, the really important data, such as customer birthdates, Social Security Numbers and so on were not seen, while less critical data like names and addresses might have been viewed (although this means that “Personally Identifiable Information” was copied).
The hope is apparently that customers will believe that data storage was compartmentalized with progressively escalated security measures.
This approach to network intrusion is now being referred to by some experts as “low-hanging fruit”, in other words presumably quite easy if you know how!
Clearly, re-evaluating network perimeter security should be a priority for all at this point.
However, since some data was exposed, the more likely scenario is that some companies used no encryption at all.In other words, there was no second line of defense.