Minneapolis Finder Forum MN
RegisterSearchTutorialsMemberlistLog in
Reply to topic Page 1 of 1
Clever Hackers Raiding Corporate Databases
Author Message
Reply with quote
Post Clever Hackers Raiding Corporate Databases 
http://www.usatoday.com/tech/news/computersecurity/2009-10-08-cyberthieves-network-hackers_N.htm

Sophisticated hackers using malware and invading business WiFi networks are finding corporate databases easy targets to steal and use customer financial information from.

Reply with quote
Post  
IMO the two biggest threats to business networks is arrogance and stupidity. Since tech has gone mainstream, neither are in short supply.

http://consumerist.com/5342194/ameriprise-website-riddled-with-security-vulnerabilities-for-at-least-five-months

I may have posted this story here before, but it's a pretty standard example of massive arrogance. Big company is alerted to massive security flaws in their public facing website. Big company denies that such flaws exist and continue to operate with known flawed software.

I don't have the link to my example of stupidity. But the details went along the lines of a website that allowed you to look up your membership information on their website. Well the idiots who created it decided to put the entire database query in the URL. So once you load the page, change the query and the page will dump the results to the page. Company was informed of this and the next day they changed all of their database table and field names to upper case, thinking that would help them somehow.

Display posts from previous:
Reply to topic Page 1 of 1
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum