Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
High Profile, Low Security
Matthew Tanase, 2005-03-07

Big companies stumble with high profile security breaches that make your local WiFi coffee shop look secure.

Comments Mode:
High Profile, Low Security 2005-03-08
Anonymous (2 replies)
Large corporations will get it when there is a significant financial incentive that requires them to get it. They evaluate projects based on ROI, and the security industry has not provided the numbers that are required... just anecdotes. In small organizations there is usually one person that make...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-09
Anonymous
COrporation spend huge dollars implementing projects aimed at installing IDS/IDP, virus scanning, firewalls, and all sorts of other security technology aimed at keeping people from hacking the network.

I like tehcnology as much as the next guy (or gal), but until corporation start looking at sec...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-14
Anonymous
-->
They evaluate projects based on ROI, and the security industry has not provided the numbers that are required... just anecdotes.
<--

And herein lies the problem. When will companies "get it" that there is not an ROI when it comes to security. Is there an ROI associated with maintaining ph...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-08
Don Parker
Problem with big companies is the endless layers of management. Were you able to actually access the person who can effectively make things happen I believe they would. Having to deal with a dozen layers of beaurocracy though makes things generally stagnate. Small companies or mom&pop outfits can ma...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-09
Paul
I thank the author for this article; an enjoyable read.
It gets to the salient points, without ranting off.
I will be forwarding this to a number of parties who could well learn a thing or two, and hopefully take the hint before it is too late....

[ more ]  [ reply ]
High Profile, Low Security 2005-03-09
Anonymous
In my experience large companies often do not install security solutions until they have somehow been breached. Often there is a disconnect between the IT department and the administration. The IT Director or CIO will push for security because he realizes the threat, but the administration is look...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-09
Anonymous 24 (1 replies)
"Here I sat in a small, local coffee shop that had just shelled out a decent chunk of change for someone to implement a relatively sophisticated authentication system that protects both themselves and their customers. "

Or with a little knowledge, they may have done it for free. A quick Google se...

[ more ]  [ reply ]
High Profile, Low Security 2005-03-10
Ed
A $1,000 can be a lot of money for a small business, and it is likely they did not have the expertise to do it themselves. If they did it would make them an exceptional case rather then the norm....

[ more ]  [ reply ]
High Profile, Low Security - Root Cause 2005-03-13
HK 41
Good article - good posts......... In most instances, the budget and approval for the implementation of security and other types of controls fall into the realm of the business manager or management. Security professionals including CIOs, CISOs and the troops that support them are in the position ...

[ more ]  [ reply ]
Take into consideration..... 2005-03-14
Anonymous
I enjoyed reading this article. It had some good points and made a lot of sense..BUT, the reason that ChoicePoint or Bank of American, or any other large corporation has so many security issues is the fact that they get thousands of more attempts from "the bad guys". Although it is great that coffee...

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus