looks pretty amateurish. But things
always go
> wrong in large IT shops.
>
> -Original Message-
> From: Ben Scott [mailto:mailvor...@gmail.com]
> Sent: Wednesday, 15 June 2011 7:55 PM
> To: NT System Admin Issues
> Subject: Re: [OT] Citibank worse at security than Sony
&
Egads.
And oof.
-sc
> -Original Message-
> From: Ben Scott [mailto:mailvor...@gmail.com]
> Sent: Tuesday, June 14, 2011 11:36 PM
> To: NT System Admin Issues
> Subject: [OT] Citibank worse at security than Sony
>
> So... 200,000 or so Citigroup customers have
On Wed, Jun 15, 2011 at 10:55 AM, Free, Bob wrote:
> If recent history is any indicator, they will get a big bailout for their
> malfeasance, any indiscretions will be ignored by regulators, they will pat
> themselves on the back with huge bonuses for weathering the storm, and the
> consumer will
On Wed, Jun 15, 2011 at 10:52 AM, Andrew S. Baker wrote:
> Well, we (collective we) have to stop giving them easy outs.
>
> They find ways to make sure that they can use hot-off-the-presses technology
> to get order entry or other more-direct-to-revenue projects done, and heads
> roll appropriatel
On Wed, Jun 15, 2011 at 10:46 AM, Ken Schaefer wrote:
> ... 10 years ago. If that’s when the app was developed, the programmers
> probably
> didn’t know better ...
That excuse gets tossed around a lot -- "we weren't being attacked
then", or "this is a new threat". I consider it bull.
Compu
On Wed, Jun 15, 2011 at 8:17 AM, Ken Schaefer wrote:
> You can push all you like. But it's not your area of expertise. So you rely
> on other people to tell you that the app works well. Things will always still
> slip through the cracks.
This isn't something that "slipped through the cracks".
h Sony, one has to wonder where their priorities are with data
>> protection ..
>>
>>
>>
>> a
>>
>> -Original Message-
>> From: Matthew B Ames [mailto:matthew.a...@qinetiq.com]
>> Sent: 15 June 2011 07:24
>> To: NT System
x: 610-233-0404
www.fiserv.com <http://www.fiserv.com/>
From: Alan Davies [mailto:adav...@cls-services.com]
Sent: Wednesday, June 15, 2011 11:19 AM
To: NT System Admin Issues
Subject: RE: [OT] Citibank worse at security than Sony
Just to point out the obvious - Citi are FS, ie.
this bad and slip
through un-noticed for any period of time!
a
From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: 15 June 2011 15:46
To: NT System Admin Issues
Subject: RE: [OT] Citibank worse at security than Sony
Probably. But some executive sponsor
t;
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Wednesday, June 15, 2011 4:31 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: [OT] Citibank worse at security than Sony
>
>
>
> *>>**As with Sony, one has to wonder where their pr
.
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Wednesday, June 15, 2011 4:31 AM
To: NT System Admin Issues
Subject: Re: [OT] Citibank worse at security than Sony
>>As with Sony, one has to wonder where their priorities are with data
>>protection ..
It's all about sha
ate by the time the next refresh
> project is entering kick-off meetings.
>
>
>
> Cheers
>
> Ken
>
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Wednesday, 15 June 2011 9:48 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: [OT]
hs ago when you
started the project is obsolete by the time it's installed, and completely
out-of-date by the time the next refresh project is entering kick-off meetings.
Cheers
Ken
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Wednesday, 15 June 2011 9:48 PM
To: NT System Admin Issu
;
>
>
> Cheers
>
> Ken
>
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Wednesday, 15 June 2011 7:31 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: [OT] Citibank worse at security than Sony
>
>
>
> *>>**As with Sony, o
static.com]
Sent: Wednesday, June 15, 2011 12:20 AM
To: NT System Admin Issues
Subject: RE: [OT] Citibank worse at security than Sony
I doubt any fat cat bankers signed off, knowingly, on an insecure site.
People going to jail would be the IT folks who should have known better.
That said, do you kn
e IT shops.
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Wednesday, 15 June 2011 7:55 PM
To: NT System Admin Issues
Subject: Re: [OT] Citibank worse at security than Sony
On Wed, Jun 15, 2011 at 7:39 AM, Ken Schaefer wrote:
> Hmm - at the individual application developm
On Wed, Jun 15, 2011 at 7:39 AM, Ken Schaefer wrote:
> Hmm – at the individual application development level, in a large org, no
> one cares about shareholder value.
That's why the people at the top need to be the ones pushing for
security. It can't be driven from the bottom.
-- Ben
~ Finall
On Wed, Jun 15, 2011 at 12:19 AM, Ken Schaefer wrote:
> I doubt any fat cat bankers signed off, knowingly, on an insecure site.
I don't think they said "make the site insecure", but they're the
ones responsible[1] for the security of their systems, and they're the
ones that set priorities for t
ather than actually trying to
attack your application)
Cheers
Ken
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Wednesday, 15 June 2011 7:31 PM
To: NT System Admin Issues
Subject: Re: [OT] Citibank worse at security than Sony
>>As with Sony, one has to wonder where their priorities ar
eir priorities are with data
> protection ..
>
>
>
> a
>
> -Original Message-
> From: Matthew B Ames [mailto:matthew.a...@qinetiq.com]
> Sent: 15 June 2011 07:24
> To: NT System Admin Issues
> Subject: RE: [OT] Citibank worse at security than Sony
>
> As a s
--
From: Alan Davies [mailto:adav...@cls-services.com]
Sent: 15 June 2011 10:31
To: NT System Admin Issues
Subject: RE: [OT] Citibank worse at security than Sony
What floors me is how sophisticated they are saying the attack is!
Honestly, this article makes me so angry!
http://www.nytimes.com/2
netiq.com]
Sent: 15 June 2011 07:24
To: NT System Admin Issues
Subject: RE: [OT] Citibank worse at security than Sony
As a software engineer I would feel rather guilty to develop a system
that was that poor. I used to have a Citi credit card. I had better
check it is no long active.
-Origin
Subject: [OT] Citibank worse at security than Sony
So... 200,000 or so Citigroup customers have had their person info
stolen. Someone logged in to one account properly, then changed the
account number in the URL to someone else, and the site happily served
up that account instead. I hesitate
Scott [mailto:mailvor...@gmail.com]
Sent: Wednesday, 15 June 2011 11:36 AM
To: NT System Admin Issues
Subject: [OT] Citibank worse at security than Sony
So... 200,000 or so Citigroup customers have had their person info stolen.
Someone logged in to one account properly, then changed the account numb
So... 200,000 or so Citigroup customers have had their person info
stolen. Someone logged in to one account properly, then changed the
account number in the URL to someone else, and the site happily served
up that account instead. I hesitate to even call the first party an
"attacker". Is it re
25 matches
Mail list logo
