When Security Problems Get Bad, IT Managers Blame Everyone Else
from the it's-your-JOB dept
Ok, let's start out by admitting that people do incredibly stupid things on their computers that often put those computers at risk. It happens. It sucks and they should know better -- but it happens and it's not going to stop happening any time soon. However, as an IT manager, part of your job is to do your absolute best to protect computers anyway. That could involve better training for employees or it could involve better technology to help prevent bad things even when users are, in fact, clueless about security. However, that doesn't change the simple fact that users are going to screw up. That doesn't mean, though, that IT managers get to shift all the blame to end users. Yes, they're doing things stupidly -- but it's not necessarily their fault. They just don't know. Your job, as an IT manager, is to prevent against attack no matter how clueless your end users are. Whining about end users just suggests that you're not doing your job very well.Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
No Subject Given
[ link to this | view in chronology ]
Re: No Subject Given
Did that; sent out phishing bait with a link asking detailed questions to gather account numbers, etc.
Problem was, nobody took the bait. They all called the helpdesk and asked if it was a real email.
The failing here is those stupid chain letters. If someone sent one out and embedded a bad link in there any insufficiently protected network could be compromised.
I'm confident in the steps we've taken as an IT department to protect the world from our users, as well as our users from the world, but, as you said, all software is vulnerable. Problem there is the manufacturer doesn't seem to care most of the time.
[ link to this | view in chronology ]
Re: No Subject Given
[ link to this | view in chronology ]
Re: No Subject Given
If Germany would have sent that kid that wrote Sasser to jail for 20 years instead of a one-year suspended sentence, hacker may think twice about what they are doing. If instead of paying MS when caught, then setting up shop elsewhere, spammers were sent to jail for a long time, my company wouldn't need to spend thousands of dollars on anti-spam & anti-virus software every year. Any modern system is too complicated to ever be 100% secure, we need to start looking at the problem differently.
[ link to this | view in chronology ]
Re: No Subject Given
If they up the ante by saying you'll go to jail for 20 years, the challenge just got upped big time.
Not slapping on an super-sized sentence can lead to other methods of silencing the inner adrenaline junkie these types have become...
as usual, correct me if I am wrong.
[ link to this | view in chronology ]
Re: No Subject Given
All the finger pointing between users, admins, developers, browsers, OSs, etc really bothers me. The discussion we should be having is how do we get these criminals off the street.
[ link to this | view in chronology ]
Re: No Subject Given
[ link to this | view in chronology ]
Just don't give them the keys...
You get the midnight-6am Sunday shift...
[ link to this | view in chronology ]
Re: Just don't give them the keys...
I'm curious how many of our "learned" users have key loggers installed on other people's PC and are checking their email... or reading their sensitive documents.
[ link to this | view in chronology ]