Just FYI... Equifax hack preventable with patch http://thehill.com/policy/cybersecurity/350616-equifax-hack-due-to-patchable-security-flaw
On Thu, Sep 14, 2017 at 11:44 AM John McKown <[email protected]> wrote: > On Thu, Sep 14, 2017 at 10:31 AM, Jesse 1 Robinson < > [email protected]> > wrote: > > > Thanks for the Draco education. ;-) > > > > One point I failed to mention is the question of why US companies should > > be overwrought by an EU regulation. This is still in the 'opinion' stage, > > but it was pointed out at SHARE that the data breach penalty is intended > to > > protect EU citizens--wherever they might reside. Surely Equifax holds > data > > on an untold number of EU citizens. That could make the company hugely > > liable even though it's a US company. How this might shake out in court > is > > anybody's guess, but properly encrypting data is surely the best defense. > > > > IMO, encrypting data is a very good defense. Another good defense is > hiring competent people rather than inexpensive people and giving them the > time to design, code, and test their solutions. I don't have statistics, > but many attacks are based on coding errors such as the infamous "SQL > Injection" attacks. On the almost hilarious attacks which succeed because > "whomever" didn't bother to configure the security on some piece of > equipment, and left the administrator credentials as "admin/admin". Of > course, the people & time requirements that I mentioned "cost too much" and > "delay time to market". Today's world is based on think up something in the > morning, design over lunch, create before dinner, ship the next morning. > > > > > > > . > > . > > J.O.Skip Robinson > > Southern California Edison Company > > Electric Dragon Team Paddler > > SHARE MVS Program Co-Manager > > 323-715-0595 <(323)%20715-0595> Mobile > > 626-543-6132 <(626)%20543-6132> Office ⇐=== NEW > > [email protected] > > > > > > > -- > UNIX was not designed to stop you from doing stupid things, because that > would also stop you from doing clever things. -- Doug Gwyn > > Maranatha! <>< > John McKown > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > -- Regards, Mark T. Regan ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
