Proof That Employees Don't Care About Security

["Fergie" <fergdawg () netzero net>]

Via silicon.com.

[snip]

An experiment carried out within London's square mile has revealed that employees in some of the City's best known 
financial services companies don't care about basic security policy.

CDs were handed out to commuters as they entered the City by employees of IT skills specialist The Training Camp and 
recipients were told the disks contained a special Valentine's Day promotion.

However, the CDs contained nothing more than code which informed The Training Camp how many of the recipients had tried 
to open the CD. Among those who were duped were employees of a major retail bank and two global insurers.

The CD packaging even contained a clear warning about installing third-party software and acting in breach of company 
acceptable-use policies - but that didn't deter many individuals who showed little regard for the security of their PC 
and their company.


[snip]

More:
http://software.silicon.com/security/0,39024655,39156503,00.htm

- ferg


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg () netzero net or fergdawg () sbcglobal net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.