Home Forums SQLServerCentral.com Editorials The Security of Interconnected Systems RE: The Security of Interconnected Systems

  • February 18, 2014 at 6:46 am

    #1689879

    paul.knibbs (2/18/2014)

    SQLRNNR (2/17/2014)

    the ability to protect the entire system is dependent on the weakest link

    That needs to be underscored. No matter the system, there is a weakest link.

    The weakest link is almost invariably the people. Wasn't there a survey done recently where something like a third of the participants said they'd tell someone their password for $100? And that's ignoring the various social engineering scams that can be used to get someone to inadvertently give out information they shouldn't.

    You really have to be careful when they ask you for your bank account so they can deposit the $100. 😉

    Social engineering is a common way to hack. It's pretty easy to get someone to give up their user id and password.

    "Hi. I'm Chad from Unintelligble Technologies. I am a contractor assigned to a project. May I please have your user name and password? I need to run some tests. This has been approved by your I.T. staff".