Tom Olzak

Blank SQL Password? Are you kidding me!?

In Data Leak Prevention, Data Security, Hacking, Insider risk, Risk Management on April 14, 2010 at 10:22

Ok.  Maybe the properly validating input would cost the brokerage more than the $375K settlement and the loss of business due to loss of customer confidence.  I doubt, but who knows.  And the cost of an intrusion/extrusion prevention system might be outside their budgetary constraints, while encryption is not always practical.

But actually assigning a strong default password is FREE.  Simple negligence?  Lack of proper change management processes?  Security team on vacation?

Brokerage coughs up $375,000 for website breach • The Register.

  1. Learn about computer security and hacking. Learn to hack computer administrator password.Find ethical hacking traning.Learn all about anonymous hackers

Comments are closed.

%d bloggers like this: