It’s the User, Stupid (It’s the Stupid User?)
by Sky on Mar.29, 2009, under Organizations and Sociology, Security, Technology and geeky stuff
In The Curious Case of the Invulnerable Browser, Roger Grimes of Infoworld writes about the recent CanSecWest 2009 PWN2OWN contest where hackers pitted their skills against web browsers to see how quickly they could break into a computer. The prize was the computer itself. Roger says that the state of browser security is actually pretty good, but even if browsers were inpenetrable, the major source of computer breakins is users browsing to a web site that then infects their computer.
That’s my experience too. So it’s actually “user stupidity” that gets users’ computers hacked. They click on a link in an email advertising a sexy video and they end up on a site that poisons their computer instead. Or they open a tempting file that has been sent to them by email. Social engineering is the technique used to get into most computers.
Don’t click that link! Don’t open that file!
Related Articles
|
Leave a Reply
-
Welcome!
I hope you'll enjoy this mix of topics stemming from my ongoing experiences in the world of online communication. Oh, and sometimes the inspiration comes from face-to-face communications too. Many are sparked by my work as Chief Technology Officer of The Dalai Lama Foundation.
March 30th, 2009 on 12:16 am
Don’t click. Don’t open. Or get a Mac.
March 30th, 2009 on 8:32 am
I was referring to the users, not the OS, of course. Mac OSX is also vulnerable to exploits, so Mac users who click a poisoned link can end up hacked too.
The recent PDF exploit affected everyone, not just Windows.