He explained that the data stolen from LivingSocial could be used at other sites to compromise a user's account using the site's password verification systems.
"Given that the organization went to the trouble of encrypting passwords, then why didn't they extend that to the rest of the data?" he asked. "To hear of another breach of this extent with clear data being exposed of any kind, when its trivially simple to avoid it by using data-centric protection, is alarming."
Sign up for CIO Asia eNewsletters.