Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ISN] Warning on iPod threat

from [InfoSec News] Network Security [Permanent Link]
Subject: Re: [ISN] Warning on iPod threat
Date: Fri, 8 Apr 2005 00:57:43 -0500 (CDT) 
Forwarded from: Richard Forno <rforno@infowarrior.org>

Same thing a (researcher but who had no security background) clown
from Gartner in the UK said a few months ago.  Perhaps Apple's new
motto should be "ph34r the 1p0d" or something. Watch their sales
rocket if they do.  :)

To counter such "threats" means that either employees need to show up
to work naked and sans ANY items (keys, keychains, lunchbags, purses,
wallets, etc.) or companies will have to quit using computers.  
Neither scenario is feasible. Of course, any company TRULY concerned
about their data protection would want to eliminate the use of CDs,
DVDs, printers, faxes, modems, and their internet connection, too.  
Yeah, I see that happening, too.


The survey found that many IT managers were ignoring the issue, with
over a third saying they did not view the devices as a threat.


Granted, the potential for such data leaks is a valid one, but perhaps
the IT managers surveyed know more about what they view as a "threat"
to their information than a third party like Centennial?

I take such reports with a very large grain of salt.

-rick
Infowarrior.org

On 4/7/05 2:15 AM, "InfoSec News" <isn@c4i.org> wrote:


http://www.vnunet.com/news/1162329

[I wonder if this CEO has been reading old copies of InfoSec News
from about '02 - http://seclists.org/lists/isn/2002/Mar/0002.html - WK]

Iain Thomson
vnunet.com 
06 April 2005

Portable media players like the iPod pose a significant security
risk according to figures from software auditors Centennial
Software.

Nearly nine out of ten of the 220 IT managers questioned took no
action to prevent such devices coming into the workplace even though
over half of them recognised storage devices like the iPod as a
threat.

"External security risks are well documented, but firms must now
consider internal threats, which are potentially even more
damaging," said Andy Burton, chief executive of Centennial Software.

"Deliberate or accidental, the damage caused by the misuse of
removable media devices can be disastrous. Employees can seriously
endanger the company by taking sensitive information off-site,
introducing viruses, or simply creating a build up of unwanted files
on the network."


[...]




_________________________________________
Network Security - http://www.auditmypc.com
Free vulnerability test - How secure is your computer?
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ISN] Cool Cleveland Preview - Notacon, InfoSec News
Next by Date:  [ISN] Chinese intelligence role in region is eyed, InfoSec News
Previous by Thread:  [ISN] Warning on iPod threat, InfoSec News
Next by Thread:  [ISN] Arrest made in breach of military website, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]