He acquired passwords and other private information to crack systems, by asking people. La plus ça change. Now systems administrations install patches, provide passwords, train users, rotate passwords. And guess what? The majority of workers would exchange confidential information for a pen! Okay it's not quite scientific, but the study's point remains: people are the strongest or weakest security link, not the equipment.
Posted at April 18, 2003 04:53 PMAnd twelve percent of all passwords aren't confidential to begin with, because they're simply "password"!
Posted by: janni on April 19, 2003 02:00 AMScary isn't it? Especially when we often reflectively assume computers are secure and hold accurate information.
Posted by: liesl on April 22, 2003 10:47 AM