Timing is everything
Posted by Dave Bath on 2010-12-09
Sssssssssh-tang!
Attorney-General, Robert McClelland, today launched "The Insider Threat to Business – A Personnel Security Handbook", designed to help businesses understand and protect themselves from the security threat of insider activity.
– New ‘insider threat’ to busniess resource launched
– Australian Labor News 2010-12-09
Horse bolt. Gate shut.
David Spence said
Dave, re that comment of mine on SL. I’d be really interested in your views on the plausibility of PFC Culprit having the means to grab all that raw data. The cables were obviously stolen – no dispute – but I am thinking PFC Culprit is merely a convenient scapegoat.
And btw, it’s usually the horse that did it, and he stole the gate on the way out.
Dave Bath said
David – it’s a fair bit of data, and I do not know what form it is in. Screendumps to a local disk might permit local copies even with a virtual desktop. I really cannot say without knowing just how a stupid a setup there was.
Remote desktops like X-windows, workstations that might or might not have sockets to plug anything into, might or might not have any disk in them at all, were common in the late 1980s.
Wrong turn, world. The US gov should have stuck with unix, not accepted microsoft marketing, at least, anywhere security was important.
Dave Bath said
@david@1 ooops pushed button too soon.
The plausibility of PFC Culprit taking all that stuff is proportional to the stupidity of managers (writing poor security requirements into IT vendor contracts).
The sad thing is that the US mil hardening procedures are generally available, pretty damn good, but too often waived by managers wanting to make time/budget heroes of themselves.
So… Plausible…very.
But there is no good reason for it to be so.