Qondio
Front
Intel
IntelMart
Shares
My Qondio
Account
Puniksem > Intel > Security Compromised By Employee Naivety

qondio.com/KsY0 PRINT EMAIL

Security Compromised By Employee Naivety

By Anthony Ashard

In a recent study to locate and determine the affects of a widespread attack by hackers based in Europe and China who successfully broke into computers at more than 2000 companies and government agencies over the last year and a half, discovered that they were hacking in a highly coordinated global attack that exposed enormous amounts of personal and corporate secrets.

This breach is normally initiated by sending fake enticing emails to the companies employees in an attempt to get them to visit compromised websites and open email attachments. Once initiated the infection soon takes hold of a companies computers allowing hackers to gain full access and steal everything of value.

In one attack a secured credit card verification server was compromised allowing hackers to get unrestricted access to passwords and account details of thousands of customers.

The largest hole in any security system is the weakest link in that system, so when your company has many employees accessing the internet, it only takes one employee to infect and entire network, compromising the security and infrastructure from within.

Companies should set-up regular training courses addressing and educating staff in all aspects internet safety and security. Without such training any company can fall foul of spyware and hacker abuse.

In a recent 2009 study, as many as 83% of all companies questioned, admitted that they would rather lie to a client to protect any loss of reputation, rather than admit they have serious security failings in their computers and internet security systems.

Because of this failure to disclose information about security issues in company computer systems, little is done to protect them from future attacks and breaches in client information.


Contributor's Note

Do you own a business that has experienced malicious compromise of a computer system, or have you trained yourself or your employees to understand and deal with the risks of unsafe internet usage? I'd like to hear your views...

Images


What does it take to make a computer secure?
What does it take to make a computer secure?

Contributed by Puniksem on February 20, 2010, at 00:26 AM UTC.

PLEASE VISIT THE CONTRIBUTOR'S WEBSITE
CTEK Solutions.co.uk
Friendly PC Support 'Jaws' Compatible
www.ctek-solutions.co.uk

Reactions

No reactions yet.

Rate This Intel

Please login or sign up to rate this intel.

Comments

Please login or sign up to add a comment.

I'll say! Lying to save face sure is prevalent, but is never a good business practice.

Janet Jenson Feb 20, 2010 00:38
This is frightening stuff, Anthony...

James Emery Vigh Feb 20, 2010 09:47
Why am I unsurprised? Especially about the lying, of course they lie to save face. You can't find out about anything like that until someone blows the whistle.

robertsloan2 Feb 20, 2010 10:45

CONTRIBUTOR'S REPLY

Not so much about lying directly, but not disclosing the security flaws and recent attack statistics to share holders is in my mind the equivalent to lying.

In some cases the person/s responsible for ensuring the companies computer system remains safe failed to report incidents and in some cases failed to detect that the system was compromised until data was reported missing by the client.

Disturbing information, for sure. As for employee training, certainly that should be part of any company's practice. Unfortunately, even training will not completely eliminate human error nor will it guarantee that all employees will follow the procedures at all times. I'm self employed, which means I'm responsible for keeping my own computers secure. I do a fairly good job of it, but I get careless and slip up from time to time.

June Campbell Feb 20, 2010 12:42

CONTRIBUTOR'S REPLY

It's interesting to learn that you take care of your own business security, do you actually educate yourself about the various aspects of data theft prevention, and firewall control?

Now I'm even more happy that I am a "small company"... ;)

daria Feb 25, 2010 18:18

Share

Copyright Notice

The copyright for this content entitled "Security Compromised By Employee Naivety" has been specified by the contributor as:

All Rights Reserved

This content may not be copied, distributed or adapted by anyone under any circumstances.

Login Here with
Any Email Address
Any Password
No account? Sign up.

Intel Contributor
This intel was contributed by Puniksem


Puniksem

Qondio Archive
May, 2012
123456
78910111213
14151617181920
21222324252627
28293031


2008
January, February, March, April, May, June, July, August, September, October, November, December
2009
January, February, March, April, May, June, July, August, September, October, November, December
2010
January, February, March, April, May, June, July, August, September, October, November, December
2011
January, February, March, April, May, June, July, August, September, October, November, December
2012
January, February, March, April, May

Sign Up
Not a member yet? Qondio is a powerful network for making it online. If you have a website to promote, we can help. Sign up and get in on the action.

About Qondio
Welcome to Qondio! Discover the awesome power this network can deliver by going to our About page. Or you could skip straight to the Sign Up form.

ABOUT
SUCCESS GUIDE
FEATURES
FAQ
ADVERTISE
CONTACT
USAGE POLICY
PRIVACY POLICY


 TWITTER
FACEBOOK