.

Oops, I got us hacked

<<

timmedin

User avatar

Sr. Member
Sr. Member

Posts: 469

Joined: Thu Feb 05, 2009 11:18 pm

Post Fri Apr 17, 2009 8:01 am

Oops, I got us hacked

I wonder if the size of something like Heartland skewed the results a bit? It is hard to comensate for 100Million pieces of info.


Study: Mistakes, Not Malicious Insiders, to Blame for Most Breaches

285 million records breached, most attacks came from external sources, according to Verizon study
http://www.csoonline.com/article/489644 ... t_Breaches

"Outsiders are going to exceed insiders in number. There are more of them. It makes sense that that attack ratio would be there," said Wade Baker, a Research and Intelligence Principal with Verizon.
twitter.com/timmedin | http://blog.securitywhole.com
<<

sgt_mjc

Sr. Member
Sr. Member

Posts: 294

Joined: Tue Feb 05, 2008 8:34 am

Location: AL

Post Fri Apr 17, 2009 1:34 pm

Re: Oops, I got us hacked

On our big contract we regard the insider as the biggest threat to the system if for no other reason than the system is not connected to the internet. With that said, insiders are still a huge threat. Easily half the systems I looked at last week had a boot order that would allow a system to boot from some other media than the first HD. They could also be booted into the BIOS with PWs and had the order changed there. On top of all that, the insider has one thing the outsider doesn't, physical access. We'll see where this goes. Thanks for the news.
Mike Conway
CISSP
CompTia Security +
C|EH
<<

timmedin

User avatar

Sr. Member
Sr. Member

Posts: 469

Joined: Thu Feb 05, 2009 11:18 pm

Post Sat Apr 18, 2009 11:01 am

Re: Oops, I got us hacked

How much physical access are people allowed there?
twitter.com/timmedin | http://blog.securitywhole.com
<<

sgt_mjc

Sr. Member
Sr. Member

Posts: 294

Joined: Tue Feb 05, 2008 8:34 am

Location: AL

Post Mon Apr 27, 2009 2:16 pm

Re: Oops, I got us hacked

You would be surprised. If you are part of the program, you have pretty much unlimited physical access. With that said, the place is wired out the whazoo with video and other physical security implementations. Yes, the insider is a great threat, but it would be hard to get away with anything there.
Mike Conway
CISSP
CompTia Security +
C|EH

Return to Incident Response

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software