Information security is about people

Tuesday, 24 February 2004, 8:20 PM EST

One morning I pulled on hat and sweater bearing the logo of a well-known telecom company, printed up a fake work order, and headed off to the offices of one of my clients.

With my pseudo-official outfit and scrap of paper, I managed to make my way past security and into the room housing the company's telecommunications hub. A few keystrokes later I had downloaded every username and password on the system and had complete access to every account, file, mailbox and computer on the network.

Luckily for the company, I was working for them as an ethical hacker and security consultant. Unluckily for them, anyone with enough desire, access to a printer, and a few dollars for wardrobe could have done the same.

By Robert Masse at Globetechnology.

[ Read more ]




Spotlight

Why vulnerability disclosure shouldn’t be a marketing tool

Brian Honan, CEO at BH Consulting, talks about a recent vulnerability disclosure trend – a trend that he believes may ultimately cause more harm than good: security vendors using vulnerability disclosure as a marketing tool with the goal of enhancing their company’s bottom line.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Thu, Jul 2nd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //