Weak monitoring lets hackers run riot
Too many IT administrators are taking their eye off the ball and allowing easy back-door entry into company systems, a leading computer forensics expert has claimed.
In an interview with vnunet.com, Bryan Sartin, technology director at security service provider Ubizen, said that breaches are often the result of poor monitoring.
Ubizen works with police authorities, banks and businesses to investigate attacks on networks.
The company uses computer forensics to discover and analyse potential evidence of the activities leading up to an information security breach.
"With many security breaches which we investigate, the problem arises because administrators were not watching the web logs," said Sartin.
"Sometimes it is a case of the IT administrator not doing his job properly. Other times it is because he must wear many hats, from office manager to web developer.
[ Read more ]
- Software: The Sleuth Kit
- Review: Incident Response: Computer Forensics Toolkit (29 October 2003)
- Review: Hacker's Challenge 2: Test Your Network Security & Forensic Skills (10 April 2003)
- Review: Incident Response - Investigating Computer Crime (27 October 2002)
- Review: Linux System Administration - A User's Guide (18 August 2002)