There are mail servers on mainframes. There are web servers on mainframes. What prevents a user from doing something stupid?
-- Shmuel (Seymour J.) Metz http://mason.gmu.edu/~smetz3 ________________________________________ From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on behalf of Joe Monk [joemon...@gmail.com] Sent: Sunday, April 24, 2022 11:57 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: IBM (IBM Z) , Lenovo, HPE and Huawei Servers Rank as Most Secure Platforms in ITIC Survey | TechChannel Phishing doesn't happen on mainframes. A user who works at a company that has a mainframe but no access cannot be a phishing threat to a mainframe. That was my point. Joe On Sun, Apr 24, 2022 at 10:34 AM Gibney, Dave < 000003b5261cfd78-dmarc-requ...@listserv.ua.edu> wrote: > It is arguable that a successful phish involved on insider. > > > -----Original Message----- > > From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On > > Behalf Of Joe Monk > > Sent: Sunday, April 24, 2022 8:20 AM > > To: IBM-MAIN@LISTSERV.UA.EDU > > Subject: Re: IBM (IBM Z) , Lenovo, HPE and Huawei Servers Rank as Most > > Secure Platforms in ITIC Survey | TechChannel > > > > [EXTERNAL EMAIL] DO NOT CLICK links or attachments unless you recognize > > the sender and know the content is safe. > > > > "Given that a healthy percentage of successful attacks involves insiders, > > there > > is no way that z/OS is immune to breaches." > > > > Umm, you may want to rethink that statement... > > > > "Phishing and related attacks — such as smishing (phishing lures sent > over > > SMS messages) and business email compromise (phishing messages sent by > > someone pretending to be a colleague or a supervisor) — was the most > > common > > primary cause of data breaches in 2021. Ransomware was not too far > behind, > > and malware was the third most common cause of data breaches.At the > > current > > growth rate, ransomware attacks will pass phishing as the No. 1 root > cause > > of data compromises in 2022, ITRC predicts." > > > > https://secure-web.cisco.com/1k1_r0TlbVPUTIZTD3-gWpV1NYxvSrT17d8CmNcvajkIktSG2UnImHtL6WBeQ5ajzZf9Sm8a5OuaHNjzp1pLiEadkOdj9qeGg3h2zanwUgyAeYL4X-FaIeNfrZCrKxM0b53_zY2GXfI0LW1kdNeUAlh1Gfkfz9lfA2F94l6vsmgInWd8DXmS5_6guPoNzYdY24WDYvdHla0_PYkz9HxQdU_b8clNWvCVt3iS5T5JalT1TkeR4q1c8eHkUo2HbvCN_i_WTRAqSMrQRMteGDb0l2J2qgTYIgqvj7JLc-R28ag-hMkTLok4cDJ4-DCUAQLkFqcJ9MlKGkJdmMTp8Ohy6_IYxH5TIs6mCRmI0nKefar7l6yGHb3J0HPPvpoiaYEI5lajM4Zm3jB8Ry_GOebx5Qgqd0U2qn4aADMhcRzrObpWzf0-BYnrTOJ-QD0Vc4oLW_9UDu9zX24VAHRvcWQbXAA/https%3A%2F%2Furldefense.com%2Fv3%2F__https%3A%2F%2Fwww.darkreading.com%2Fedge-threat- > > monitor/most-common-cause-of-data-breach-in-2021-phishing-smishing- > > bec__;!!JmPEgBY0HMszNaDT!u- > > 4fSo6TSZojRZ0IH6DKEA70HTAH9ucb8s7DxZ4NObs9gvY- > > _gQMZwf_6EQM1tkS2H_ABi0508IFBSI_$ > > > > Last I checked, Outlook doesnt run on z/OS... > > > > Joe > > > > On Sun, Apr 24, 2022 at 8:11 AM Seymour J Metz <sme...@gmu.edu> wrote: > > > > > Given that a healthy percentage of successful attacks involves > insiders, > > > there is no way that z/OS is immune to breaches. The best that can be > said > > > is that, properly administered, it is more secure than some other > platforms. > > > > > > > > > -- > > > Shmuel (Seymour J.) Metz > > > > > https://secure-web.cisco.com/1HyANnEGUo2TMZSw5h74HFI_XBkyDh7HgmgNXYF_ZCiw91vt8LR-fXTlhqPqfReBhxmvFcRFKFdlTdlPL9IxUltiTdXcbpxMD13wnFFMv2HSrE2z720bJ67p3GP9CYdHQdDon1ZF6w_msLW-aUK7qEyyZWOfq5DGoGTBIA632DZ8ZBjIVf1SQ6jFkvfQUTyi8kUajqoD9T0qTV2AxL37aYijF-Ns5Nz_kVL9LbRpgvyrxDyRVNnvKMLyLqz9jqOV2n4siOFZX1LnapxS6rtvewtlxFNqMQsG7ChWkbmTD12wTnEOJ_Z6PAW_OV-H2KWGmNMJTXPyXUoR8AO_c7dtUgVMhKNRzVqsyDGFVG-EfkVv2IHFePOmwCcI7-sZBJt4aEVUkweHwRUzzPlz-CsC7RFd2hDkESVKO6SEL6MR4HJngZDuUoz2ydBmwZu7pzgB2gyXaA454x2WO2qql9R6C2A/https%3A%2F%2Furldefense.com%2Fv3%2F__http%3A%2F%2Fmason.gmu.edu%2F%2Asmetz3__%3Bfg%21%21JmPEg > > BY0HMszNaDT!u-4fSo6TSZojRZ0IH6DKEA70HTAH9ucb8s7DxZ4NObs9gvY- > > _gQMZwf_6EQM1tkS2H_ABi0507J-pmvm$ > > > > > > ________________________________________ > > > From: IBM Mainframe Discussion List [IBM-MAIN@LISTSERV.UA.EDU] on > > behalf > > > of Bob Bridges [robhbrid...@gmail.com] > > > Sent: Friday, April 22, 2022 7:53 PM > > > To: IBM-MAIN@LISTSERV.UA.EDU > > > Subject: Re: IBM (IBM Z) , Lenovo, HPE and Huawei Servers Rank as Most > > > Secure Platforms in ITIC Survey | TechChannel > > > > > > Don't get me wrong: I do believe that IBM mainframes belong at the top > of > > > the list for security capabilities. But it occurs to me that if they > > > determined this by poll, then their results may be skewed by a) the > belief, > > > on the part of mainframers like me, that IBM is best, and b) a > reluctance > > > on the part of some corporations to report breaches even in polls that > > > claim they're anonymous. > > > > > > That said, I'm a little surprised that IBM had "fastest mean time to > > > detection (MTTD) from the onset of the attempted attack until the > > company > > > isolated and shut it down". I know real-time reporting products are > out > > > there for mainframes, but I had the impression they're not used much. > > > > > > It's also interesting, given the size of the companies that use > > > mainframes, that they also report "The least amount of monetary losses > > due > > > to a successful security hack". Although see item b) above again. > > > > > > --- > > > Bob Bridges, robhbrid...@gmail.com, cell 336 382-7313 > > > > > > /* Believe me! The secret of reaping the greatest fruitfulness and the > > > greatest enjoyment from life is to live dangerously! -Friedrich > Nietzsche > > > */ > > > > > > -----Original Message----- > > > From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On > > Behalf > > > Of Mark Regan > > > Sent: Friday, April 22, 2022 16:40 > > > > > > > > > https://secure-web.cisco.com/12ryOjmjdRjtwmldA3CRrh8z6RGxlOlrBfCYvpLNAGaDHP7fKmPDr-Gl1td4eF-35MOPfRrYsktwugeEBi9CnxFecZw04ZnhF2m2guBerDDDLRTDO2xf62MY52HAblmxYtx0bxfHifLRINtXkraDZtVd9PnDT0wNqkot94WAoLfNh1XFYAd8Lj3qSuHAG_YdYvDOr3wtn1ulhp-ykkKf-7lxVtUeUJ65a6E5p9hmUYod7OkeRjlcBoSqYxIIn5R_f87HEfPAfwoa43IreFSAyEwYP5SrWDxoBila-kS5_h4t702LoYd6CWZHN56gKRCUmyWqtL-aCMX6LdRrmsvYNEIP66sDDp0ihwHd4PLAJ6QckL80VS81R-N3JN3vEn4_S1yWwW8YXFMZb5NCoO1Ap11PsCdpMe831gj0jRDTX7GMY2Rl0dVlA3HkZTvDdAPB_xiZfYhfRLXHrVMxnFEcvkg/https%3A%2F%2Furldefense.com%2Fv3%2F__https%3A%2F%2Fsecure- > > web.cisco.com/1JxdfsqHGjnUuRPmN2YNUOcWs_oODuUS43Hv9Kt5RRL9WJq > > sH4- > > fcqaxAXUsKZBF9zoWi22K6jgKVsMSVPfKlDoW0UfoK79vCd9b50dV2JBh9vI68 > > wnxNs7IlnkymdAD8cyIP56U6bVR040KuFDUTTuIm5pJ-Df--mvQFXgIdElA0- > > JyZ-oaTwuV5H6T-3i1K_F5DTaJAl-B3_JifnuvpwG4jUx7XVsR5- > > xort_nGKKaysCiPyiHN5- > > RFCI82FqYnnvedHtDh3gukxo4ItD6HjpJa03Rb3BLbhb4TcscdsNUrTw7SkN15BC > > eem2_sCAEqp2x9meCeTgwhIUlAe2hust6LZz92uDc81LbxklmQbXf- > > yTlzFKn0LgmFtjRFDmvIXdZoAO5ywdpP84gAyTxS6JzKVRslOJU3wNPS_MzwR > > UNAqb_qR-fApdtTNIjp76XHmE6YTBvTCfHZWq09QjxB- > > w/https*3A*2F*2Ftechchannel.com*2FEnterprise*2F04*2F2022*2Fsecure- > > platforms-itic-survey__;JSUlJSUlJQ!!JmPEgBY0HMszNaDT!u- > > 4fSo6TSZojRZ0IH6DKEA70HTAH9ucb8s7DxZ4NObs9gvY- > > _gQMZwf_6EQM1tkS2H_ABi0500L40NdP$ > > > > > > ---------------------------------------------------------------------- > > > For IBM-MAIN subscribe / signoff / archive access instructions, > > > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > > > > > > ---------------------------------------------------------------------- > > > For IBM-MAIN subscribe / signoff / archive access instructions, > > > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > > > > > > > ---------------------------------------------------------------------- > > For IBM-MAIN subscribe / signoff / archive access instructions, > > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
