Skip to main content

same-old-song-and-dance

Here's the summary:

A lonely teenager looking for bragging rights takes advantage of unpatched, vulnerable versions of SSH to plant a trojan horse to steal usernames and passwords, escalates his priviledges and gains access to valuable information. Eventually his hubris leads him to make a mistake, he gets caught and (well, this part we don't know yet, but let's assume he gets his computer taken away for 10 years or something).

In this case, the young man got Cisco's source code, access to thousands of computers, including US military computers.

Do we:

a. Eliminate lonely teenagers seeking bragging rights?
b. Patch all our applications to protect them from known and unknown vulnerabilities.
c. Get rid of our passwords by using strong authentication?
d. Hope it doesn't happen to us?

If you think that b. is a possible answer, think about the repurcussions and practicality of it.
Currently unrated

Recent Posts

Archive

2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom