Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase 12»»

Hacked Expand / Collapse
Author
Message
Posted Tuesday, January 1, 2013 9:18 PM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: Administrators
Last Login: Yesterday @ 4:02 PM
Points: 33,062, Visits: 15,176
Comments posted to this topic are about the item Hacked






Follow me on Twitter: @way0utwest

Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401645
Posted Wednesday, January 2, 2013 2:03 AM
Grasshopper

GrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopper

Group: General Forum Members
Last Login: Monday, February 18, 2013 2:14 AM
Points: 16, Visits: 81
You were lucky, I have worked in some companies (including the current one) that believes it is too much effort and too expensive to set up power accounts for admins. Then again they seem to prefer the developers, 3rd parties & applications to have SA rights.

A few companies have a lock down policy and then its just habit to use the appropriate login. Also, stops the face-palm-Doh!! moments
Post #1401695
Posted Wednesday, January 2, 2013 2:13 AM
SSCrazy

SSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazy

Group: General Forum Members
Last Login: Yesterday @ 2:19 PM
Points: 2,891, Visits: 1,781
In the past I've known a brief hacking attack to result in a DBA to be dedicated full-time for two weeks solid to clean up the mess and that was after the hole was plugged.

LinkedIn Profile
Newbie on www.simple-talk.com
Post #1401701
Posted Wednesday, January 2, 2013 3:40 AM


SSCertifiable

SSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiableSSCertifiable

Group: General Forum Members
Last Login: Yesterday @ 9:12 AM
Points: 5,142, Visits: 4,930
Sounds all to familar, especially with people not locking their workstations. At a previous employer we had a security audit for anyone working on sensitive high level information and if you worked on the Ministry of Defence contracts, to which we where given a sonar to put on top of our monitors, so that if you moved so many inches away from your workstation it automatically locked the machine for you.

http://www.rfideas.com/products/presence_detector/pcprox_sonar/






Want an answer fast? Try here
How to post data/code for the best help - Jeff Moden
Need a string splitter, try this - Jeff Moden
How to post performance problems - Gail Shaw
CrossTabs-Part1 & Part2 - Jeff Moden
SQL Server Backup, Integrity Check, and Index and Statistics Maintenance - Ola Hallengren
Managing Transaction Logs - Gail Shaw
Troubleshooting SQL Server: A Guide for the Accidental DBA - Jonathan Kehayias and Ted Krueger

Post #1401739
Posted Wednesday, January 2, 2013 7:31 AM
Valued Member

Valued MemberValued MemberValued MemberValued MemberValued MemberValued MemberValued MemberValued Member

Group: General Forum Members
Last Login: Tuesday, February 11, 2014 1:58 PM
Points: 65, Visits: 259
Kinda surprised at that story. At a former site, we had one guy who went to the security workshop, came back and told everyone to lock their stations, and most people ignored him. If he didn't like you, he would watch for when you left your station unlocked and send an email from you, usually something about goats. The boss liked him, so he got away with it. Personally, I would have found some more work for him.
Post #1401835
Posted Wednesday, January 2, 2013 7:44 AM
Mr or Mrs. 500

Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500Mr or Mrs. 500

Group: General Forum Members
Last Login: Wednesday, July 23, 2014 3:28 AM
Points: 559, Visits: 1,157
We have a staff small ads system and so the favourite trick on the shop floor is to place a nonsense advert using the unlocked workstation such as Wanted - Braincell.
This then results in the user getting emails and a call from the system administrators who monitor adverts!
Most users other than admins cannot write to the C drive and USB and other ports and cd/dvd drives are locked down on our systems so can't be used and can only be opened up to specially encrypted memory sticks. This stops anything being brought in from outside or being installed by non-admin staff. It's not rocket science and I'm surprised it's not industry standard practice.
Post #1401848
Posted Wednesday, January 2, 2013 7:56 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Tuesday, July 22, 2014 2:26 PM
Points: 101, Visits: 134
At a previous employer, we played "donuts". If you walked away from your station and didn't lock it, then whoever noticed this would pop up a new email and send it to the "Admin" group address with the word "donuts" as the subject (which takes all of about 10 seconds). Who ever was dumb enough to leave their station unlocked then had to buy donuts for the entire admin team that Friday. It was a fairly large admin team, so you had to be ready to shell out 50-60 bucks.

A little goofy, but it drove the point home...lock your station every time, or it will cost you.
Post #1401855
Posted Wednesday, January 2, 2013 8:56 AM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: Administrators
Last Login: Yesterday @ 4:02 PM
Points: 33,062, Visits: 15,176
jon.spain (1/2/2013)
At a previous employer, we played "donuts". If you walked away from your station and didn't lock it, then whoever noticed this would pop up a new email and send it to the "Admin" group address with the word "donuts" as the subject (which takes all of about 10 seconds). Who ever was dumb enough to leave their station unlocked then had to buy donuts for the entire admin team that Friday. It was a fairly large admin team, so you had to be ready to shell out 50-60 bucks.

A little goofy, but it drove the point home...lock your station every time, or it will cost you.


That's a good idea. I like that as a way of teaching people to lock their stations.







Follow me on Twitter: @way0utwest

Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401884
Posted Wednesday, January 2, 2013 9:00 AM


SSC-Dedicated

SSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-DedicatedSSC-Dedicated

Group: Administrators
Last Login: Yesterday @ 4:02 PM
Points: 33,062, Visits: 15,176
WolforthJ (1/2/2013)
Kinda surprised at that story. At a former site, we had one guy who went to the security workshop, came back and told everyone to lock their stations, and most people ignored him. If he didn't like you, he would watch for when you left your station unlocked and send an email from you, usually something about goats. The boss liked him, so he got away with it. Personally, I would have found some more work for him.


I can appreciate the annoyance, but it drives home an important point. The only way we audit actions is with your authentication on your workstation/laptop/device. At least right now. In a group environment, leaving your workstation unlocked is a security risk. I can't tell you how many times I've found out about people you thought you could trust, or thought you knew, were performing some inappropriate, unauthorized, or illegal action for their own gain.







Follow me on Twitter: @way0utwest

Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401889
Posted Wednesday, January 2, 2013 11:38 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Tuesday, April 1, 2014 3:27 PM
Points: 115, Visits: 957
When I worked at The Major US Motorcycle Manufacturer the salaried employees were warned during our orientation to never leave our workstations unlocked when we stepped away. Seems that in addition to the need for security, the "non salaried employees" were known to wander the non-production areas during their breaks looking for unattended PCs. The story told was that they would send e-mails, surf the 'net, and other things they shouldn't be doing. One fellow was caught after sending a rather unflattering e-mail to the plant manager when a security camera just happened to be pointing in the right direction. I learned rather quickly that Windows-L was so easy to do that it became a habit that I still do to this day.

Buying doughnuts for the team is good lesson and cheaper than losing your job over a security breach.
Post #1402002
« Prev Topic | Next Topic »

Add to briefcase 12»»

Permissions Expand / Collapse