Hmm. Capitol One? Firewall? Did they have their customer database machine[s] on the internet?? Exposed to every hacker in the entire world? Did they flunk computer security 101? Can the American surplus of unemployed lawyers sue them down to their socks?
Basic rule. Machines holding critical data should never be connected to the internet. Or the phone network, or anything else. They should be kept in a locked room, with the number of key holders restricted as much as possible. Three is about right. They must be backed up to optical disk once a week, and the backups stored off site, in case of fire. (or flood, had that happen once) Windows machines are swiss cheese, important data should be kept on anything more secure, and every thing ever manufactured is more secure than Windows. Use Apple, use Linux use anything but Windows. Know that bad guys can stick a flash drive into a USB port and download every byte off the hard drive[s] onto the flash drive in a few minutes. Hands off too.
I hope these yo-yos get sued into oblivion.
No comments:
Post a Comment