On last.fm: Taylor Swift photos and free music!
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 22 of 29:
Next »
« Previous
need more info
simply running a website on iis does not automatically make it the source of the breach.

a lot will depend on what that website did, and what it had access to. if it was simply a marketing website, properly segregated on the network as it should be, it really wouldnt matter what it ran or whether it got hacked, as it wouldnt have access to anything. from looking at their website, it does seem that is the case; the website itself doesnt seem to function in their processing flow.

my guess is that the website is not the source of this particular issue. seems more likely to have been either an inside job (and thus open to be anything), or a hacked user box inside the perimeter (likely to have been windows in that case), as that is probably the weakest link in their security.
Posted by: eLurker   Posted on: 06/21/05 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Scary thoughts...  Grimm Reaper | 06/20/05
Ageed  Loverock Davidson | 06/20/05
They would be running Apache on Solaris if they cared.  DonnieBoy | 06/20/05
Well  Loverock Davidson | 06/20/05
Yes, I have to admit, for the highest level of security, Linux is not it.  DonnieBoy | 06/20/05
Details emerge on credit card breach  Loverock Davidson | 06/20/05
This message will be deleted...  Cardinal_Bill | 06/20/05
I hope it does get deleted  Loverock Davidson | 06/20/05
He is really just trying to disrupt the talkbacks.  DonnieBoy | 06/20/05
How about OS/400  DarthRidiculous | 06/20/05
Good point, solid and obscure enough that hackers won't even try.  DonnieBoy | 06/20/05
No idea  Loverock Davidson | 06/21/05
Simple - stop using MS software!  SmarterITGuy | 06/20/05
Simple!!  kthhrrsn@... | 06/20/05
Think what you are saying. People initiate credit card transactions from  DonnieBoy | 06/20/05
Bad Idea: Who checks that proprietary network protocol?  ErwinMoller | 06/22/05
Why just MS?  Loverock Davidson | 06/20/05
Evidence?  mikebol | 06/21/05
Closed sofware and protocols?  mikebol | 06/21/05
FFS What planet do you live on?  shorea50 | 06/22/05
Anyone surprised?  michael_t | 06/20/05
need more info  eLurker | 06/21/05
From the info  michael_t | 06/21/05
Don't Tell  Middle of the Road | 06/21/05
I completely agree!  mikebol | 06/21/05
Stop and think - all you 'above average' admins  I_am_hellion_z | 06/21/05
Who'd a thunk it!  Protector | 06/21/05
Big brother's "security plans" are bound by this holes.  elzopi | 06/27/05
Personally I Use....  GTO_Patrick | 09/10/05

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement
Click Here

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline