The Spy in Your Server Room 120
CorinneI writes "Your business's private information may not be as safe as you think — especially when you take into account how many people pass through your office's revolving door on a daily basis. That's why many companies hire TraceSecurity employees to test the security of their systems — operations that usually involve TraceSecurity personnel talking their way into offices in order to gain access to server rooms and sensitive customer information. PC Magazine was invited along to cover a recent TraceSecurity operation."
#1 cause is underpaid IT staff. (Score:4, Interesting)
All they prove is that IT departments are not only underpaid but under staffed.
the second thing they prove is that the security staff is also underpaid and understaffed. Sorry but my first shot is to ask what company they are from, then google it to find the phone number. I never call the number given by the person or on their badge or paperwork.
There are lots of other ways. also you don't need access to the server room to install a rogue AP and gain a wireless cracking point. one hidden nicely under the a desk on the 2nd floor corner office is a better place.
CmdrTaco (Score:5, Interesting)
Re:#1 cause is underpaid IT staff. (Score:4, Interesting)
Would you similarly distrust the number given to you from the email that was sent and appeared to be from management? I know I would assume that if the number differs from the public one on the web, it's because we have a corporate plan and have priority support from them. I -do- distrust anyone who claims to be X and give me the phone number to prove it. WAY too easy to fake.
"There are lots of other ways. also you don't need access to the server room to install a rogue AP and gain a wireless cracking point. one hidden nicely under the a desk on the 2nd floor corner office is a better place."
You do if the network is secured properly. Especially if they bothered to have 2 networks.
Re:#1 cause is underpaid IT staff. (Score:3, Interesting)
On the other hand, it wouldn't be too hard for a disgruntled IT worker to set up a WAP for someone to gain access, but I suspect the signal would be a bit hard to pick up through concrete walls and across 500 feet of parking lot...
Re:Penetration testing is next to useless (Score:1, Interesting)
Re:Slashvertisement! (Score:3, Interesting)
Re:Slashvertisement! (Score:3, Interesting)