Are your security professionals qualified?

Many don't know what they don't know

Ira Winkler (Computerworld (US))
16 August, 2012 14:08
Comments

Several lessons have been derived from the recent iCloud security incident, but the most important for me is how it demonstrates the ignorance of many security professionals, an ignorance that calls their management into question.

When the iCloud hack started hitting the news, it generated a lot of discussions among security personnel. Many of them grasped the underlying concepts reasonably well. Unfortunately, though, some of the conversations demonstrated a clear lack of understanding of fundamental security concepts.

As is widely known by now, a hacker was able to compromise the Amazon.com and iCloud accounts of a Wired reporter. The accounts were compromised as a result of operational security flaws in the password reset processes of the respective organizations. The attack itself was rather involved, but at bottom it was a fairly straightforward social engineering type of attack.

To continue reading, register here to become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

"I will right away grasp your rss feed as I can not ..."

WikiLeaks Party closer to registering
"I get a steady 15.6Mb/s sink speed with no errors and a ..."

What’s life really like on the NBN? (Part II)
"Wow, that's what I was looking for, what a stuff! present here ..."

WikiLeaks Party closer to registering
"Stoneville WA could also benefit anything is better than 200-400 kbps nothing ..."

What’s life really like on the NBN? (Part II)
"Importing and employing temporary or permanent migrants to fill any "skills shortages" ..."

Skill shortages? Not if you pay or train

Whitepapers

All whitepapers

Most Read

Sign up now to get free exclusive access to reports, research and invitation only events.

Most Commented

Featured Whitepapers

NetApp FAS6240 Clustered SAN Champion of Champions

Storage systems today must match agility with diversified I/O performance to satisfy an enterprise’s changing needs. In their review, Silverton Consulting ranks the NetApp FAS6240 Clustered SAN, as an Enterprise OLTP “Champion of Champions.” Read the results of their benchmark testing and the features that impressed them the most.

Featured Download

FeedDemon

FeedDemon is an easy-to-use RSS reader for Windows which will keep you informed with the latest news and information. The Google Reader Synchronization allows you ...

Zones

Most Popular Whitepapers

Clearing the Clouds for Midmarket Businesses

Cloud computing promises to help midmarket companies reduce cost and complexity in the IT equation – and gain the flexibility and agility they need to thrive. Yet charting a clear course to the cloud isn’t always easy. In this paper, we aim to clear the clouds. We examine different cloud computing models, discuss the types of requirements that each can best address, and consider what midmarket businesses should look for in a cloud solutions provider.

Popular tags: Business Management, Security, Storage, Data Centre, Virtualisation

Latest Jobs

FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
FTTechnical Consulting ManagerNSW
FTTest Analyst (MS Environment) .netNSW
FTTest Analyst (MS Environment) .netNSW
FTTest EngineerVIC
FTLead Software EngineerSA
FTFlash / ActionScript Developer - ContractNSW
FTSenior Python DeveloperNSW
FTSenior Python DeveloperNSW
FTR&D EngineerSA
FTWeb Analyst - WebTrendsVIC
FTSenior Python Web Applications DeveloperNSW
FTQuality ManagerSA
FT1st Line Support EngineerNSW
FTOS Web Applications DeveloperNSW
FT.NET - Sitecore Developer - Melbourne - PermNSW

Market Place

Are your security professionals qualified?

Recommended

What’s life really like on the NBN? (Part ...

Australian eHealth messaging trial a success

More Australians are using mobiles to connect to ...

Distribute.IT hacker arrest a reminder to stay alert: O'Connor

What’s life really like on the NBN? (Part II)

LogMeIn eyes opportunities in the Internet of Things

Telstra continues with billion dollar 4G plan

UPDATED: 4G in Australia: The state of the nation

iPhone 6 rumour rollup for the week ending May 17

NBN debate turns into slanging match

Turnbull blasts Labor over unsold spectrum in Digital Dividend

Australia lags Mongolia in Internet speeds

What’s life really like on the NBN? (Part II)

Conroy dismisses claims of NBN failing

NetApp FAS6240 Clustered SAN Champion of Champions

Mobility Apps: What every developer should know

Maximising productivity without sacrificing security

The Foundation for Cloud Management

FeedDemon

Symantec Business Critical Virtualisation Content Zone

BlackBerry Enterprise Service 10 Zone

HP Tech Connect Resource Centre

Clearing the Clouds for Midmarket Businesses

Six Reasons to Empower Your SharePoint Citizen Developers

Hybrid IT Service Management: A Requirement for Virtualisation and Cloud Computing

Building Maturity and Experience in Successful Virtualisation Strategies

Deploying Flash in the Enterprise

Computerworld newsletter

Don't have an account?

Are your security professionals qualified?

Recommended

Computerworld newsletter