Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Human Nature vs. Security
Daniel Hanson, 2004-03-29

Social engineering in the latest crop of viruses has people jumping through hoops to open malicious attachments. How do we change the pattern?

Comments Mode:
Human Nature vs. Security 2004-03-30
Anonymous
Human Nature vs. Security 2004-03-30
IT Professional (2 replies)
Human Nature vs. Security 2004-03-31
Anonymous
Human Nature vs. Security 2004-04-05
Anonymous (1 replies)
Human Nature vs. Security 2004-04-07
Anonymous
Nice summary of the problem, but where's the solution? 2004-03-30
Anonymous (2 replies)
Nice summary of the problem, but where's the solution? 2004-03-30
Anonymous
Nice summary of the problem, but where's the solution? 2004-04-06
Anonymous
Human Nature vs. Security 2004-03-30
Mene Tekel (1 replies)
Human Nature vs. Security 2004-04-06
Anonymous (1 replies)
Human Nature vs. Security 2004-04-07
Anonymous
Human Nature vs. Security 2004-03-30
Simonis
Human Nature vs. Security 2004-03-30
Anonymous
Human ignorance vs. security 2004-03-30
F. Obfusco
Human Nature vs. Security 2004-03-30
Yvan Boily (1 replies)
Human Nature vs. Security 2004-04-02
Anonymous
Human Nature vs. Security 2004-03-31
jaywalker (3 replies)
Human Nature vs. Security 2004-04-01
Brainclots (1 replies)
Human Nature vs. Security 2004-04-04
Mene Tekel
Human Nature vs. Security 2004-04-01
IT Professional (1 replies)
Human Nature vs. Security 2004-04-02
Anonymous
Human Nature vs. Security 2004-04-01
Anonymous
Human Nature vs. Security 2004-03-31
Anonymous (1 replies)
Human Nature vs. Security 2004-04-01
The Suite (1 replies)
Human Nature vs. Security 2004-04-02
Anonymous
Why not just revoke protection from the users that don't adhere to good practices? If the store all of the credit card information on their computer, and don't bother with a firewall, antivirus, etc. and their card gets stolen, they don't get protection from the banks or agencies? This would mean including yet another "clause" on pretty much all documents, but if it was pointed out and included a reference manual on protecting your information....(don't store your account numbers on the computer in the first place) then they would have no recourse if they were compromised. The financial institution would not be liable and, if caught, the criminal who took the information would still be sent to jail. And the foolish user who didn't listen would have to learn their hard lesson, probably only once. Just a thought.

~She

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/231/25688#25688
A technical solution to part of the problem... 2004-04-01
Roger
Human Nature vs. Security 2004-04-01
Chris
Human Nature vs. Security 2004-04-01
Educational Netowrk admin
this is a good study in how evil works 2004-04-01
Anonymous
Human Nature vs. Security 2004-04-01
KB
Human Nature vs. Security 2004-04-02
Roy
Human Nature vs. Security 2004-04-05
Anonymous







 

Privacy Statement
Copyright 2009, SecurityFocus