Hacker Detection Firm... Hacked
from the data-compromised dept
You would think, if you're in the "unauthorized computer break-in prevention" business, that you better make damn sure that your systems are pretty well protected -- because you are absolutely going to be a target. However, on top of that, you should probably make sure that your customer records are encrypted and you don't keep information you're not supposed to -- like credit card CVV numbers. Unfortunately, it appears that Guidance Software did none of those things, and is now informing customers that their info had been stolen by hackers. In fact, Guidance didn't even notice the hack until two weeks after it happened, which doesn't bode well for its sales pitch on its new security tools targeted at law enforcement officials.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
No Subject Given
[ link to this | view in chronology ]
Prevention Vs. analysis
But Guidance is in the computer forensic analysis software business. Their software either runs inside the network you want to protect (the enterprise version) or on a freestanding workstation that requires the physical hard drive from the suspect's machine. No, I don't work for Encase. In fact, my agency pays Encase a lot of money to purchase/license their programs.
It's almost as good to say "Forensic software company hacked".
[ link to this | view in chronology ]
Re: Prevention Vs. analysis
[ link to this | view in chronology ]
Re: Prevention Vs. analysis
Most companies have sophisticated intrusion detection systems, but without a reasonable plan to address security breaches, the number of alerts is overwhelming. We don't think you should have to pick and choose which issues to address; we think every significant event demands attention. That's why we built EnCase® Enterprise software to provide a complete and automated incident response capability, able to fully integrate with your alerting systems, automating response, data analysis and remediation across your entire enterprise. And better still, EnCase Enterprise can do it live, while the network is up and running. Now you're covering more ground, quickly, with little or no disruption to your organization.
So it would seem they did not use their own products at all or they just don't work.
[ link to this | view in chronology ]
Re: Prevention Vs. analysis
[ link to this | view in chronology ]
Re: Hacker Detection Firm... Hacked
[ link to this | view in chronology ]
No Subject Given
I think it's hilarous.
[ link to this | view in chronology ]
Every move like chess
[ link to this | view in chronology ]
No Subject Given
[ link to this | view in chronology ]