$1 billion?
Mitch Ratcliffe  | 05/07/07
|
I'm not reporting that, others are
georgeou | 05/07/07
|
|
People like me?
Mitch Ratcliffe | 05/07/07
|
You can start with the WSJ article I linked to
georgeou | 05/07/07
|
|
So, no responsibility?
nizuse | 05/08/07
|
|
Gratuitous hate won't improve your clarity
fuzzy2k | 05/08/07
|
Chill out, that's an inside joke
georgeou | 05/08/07
|
|
Sorry
fuzzy2k | 05/08/07
|
|
No problem, I should have sent that in email
georgeou | 05/08/07
|
|
He said "could", not "will".....
linux for me | 05/09/07
|
|
Shocking
D. T. Schmitz | 05/07/07
|
|
I don't know, maybe it is necessary
georgeou | 05/07/07
|
|
Just the facts ...
orcmid | 05/07/07
|
|
Multi-factor is a scam that falls under "snake oil" in security
georgeou | 05/07/07
|
|
Some one tell my bank that as well
nucrash | 05/08/07
|
|
No, I'd rather use my own smartcard/keygen
georgeou | 05/08/07
|
|
Multi-factor authentication
dancac | 05/08/07
|
|
Compounded Cluelessness
orcmid | 05/08/07
|
|
Standardised processes may not create high quality
Patanjali | 05/09/07
|
|
You're right, consistently low quality
georgeou | 05/09/07
|
|
Don't get me started about ISO certification
High Sierra | 05/15/07
|
|
I like the thinking, but let's improve shall we
nucrash | 05/08/07
|
|
Default insecure is standard
Marty R. Milette | 05/08/07
|
|
People have no Idea how un secure our info is
masonfcobb1@... | 05/08/07
|
|
Employers are free to use SSNs as identifiers
orcmid | 05/08/07
|
|
Figuring out the damages
Larry Dignan | 05/08/07
|
|
The lawsuits and fines will pile up
georgeou | 05/08/07
|
|
Why hasnt anyone asked why TJX's External Auditor's never caught this?
TSGlassey | 05/08/07
|
|
That's not how auditing works
georgeou | 05/08/07
|
|
Uhhhhh - No George - that's exactly how Auditing works...
TSGlassey | 05/10/07
|
|
I've seen how auditing works, and I'm not impressed
georgeou | 05/10/07
|
|
TJX management bears the responsibility.
micallefman@... | 05/08/07
|
|
Heres the problem, SOX doesn't say you can't use WEP
georgeou | 05/08/07
|
|
Correct George
micallefman@... | 05/14/07
|
|
The costs of the damages may actually never be known...
TSGlassey | 05/08/07
|
|
1 Billion should just be the initial fine...
enduser_z | 05/08/07
|
|
I agree, $100 per record should be the minimum fine
georgeou | 05/08/07
|
|
Sorry, need to fix math
georgeou | 05/08/07
|
|
was the cc data itself encrypted?
JetJaguar | 05/08/07
|
|
Doesn't matter, they failed Access Control and Host hardening
georgeou | 05/08/07
|
|
Failing Host Hardening is another Audit Issue!
TSGlassey | 05/10/07
|
|
Their hosts were compromised because their authentication was leaked
georgeou | 05/10/07
|
|
The 0th flaw in wireless security
dpnewkirk | 05/08/07
|
|
That kind of cynicism is wrong and harmful
georgeou | 05/08/07
|
|
Seeing choice when you actually have choice
dpnewkirk | 05/09/07
|
|
Righ on target.
singerap | 06/06/07
|
|
Yet another reason why retailers should not be allowed to keep CC data.
Been_Done_Before | 05/08/07
|
|
Why store the CC numbers anyhow ?
mikew_z | 05/08/07
|
|
Sloth, laziness, greed, incompetence, etc.
ejhonda | 05/08/07
|
|
Why not?
enduser_z | 05/08/07
|
|
Even if they didn't store it, it's still a big problem
georgeou | 05/08/07
|
|
WPA questions...?
techboy_z | 05/08/07
|
|
In most cases, you can't...
Marty R. Milette | 05/08/07
|
|
WPA is for making access points private
orcmid | 05/08/07
|
|
Public APs don't have security.
georgeou | 05/08/07
|
|
Don't trust your network
Sxooter_z | 05/08/07
|
|
That's the wrong attitude for it
georgeou | 05/08/07
|
|
You completely missed my point
Sxooter_z | 05/09/07
|
|
VPN shouldn't be a substitute for link-layer security
georgeou | 05/09/07
|
|
and one more thing
Sxooter_z | 05/09/07
|
|
Sorry, that's completely wrong
georgeou | 05/09/07
|
|
Last post, honest.
Sxooter_z | 05/09/07
|
|
His solution sucks and it's wrong
georgeou | 05/09/07
|
|
Such eloquence!
Sxooter_z | 05/09/07
|
|
btw
Sxooter_z | 05/09/07
|
|
VPN doesn't fix basic access control
georgeou | 05/09/07
|
|
Again, you missed his point
Sxooter_z | 05/10/07
|
|
absolutely untrue
zoroaster | 05/08/07
|
|
oops...
zoroaster | 05/08/07
|
|
Uh, if that was a response to "don't trust the network"
Sxooter_z | 05/09/07
|
|
Heres a sad truth, law enforcement problem
masonfcobb1@... | 05/08/07
|
|
Hm....I agree
Krazyken39 | 05/09/07
|
|
it might be that only WEP works
ttocsmij | 05/08/07
|
|
Then replace the hardware...
burkhartmic | 05/08/07
|
|
WEP is still better than...
burkhartmic | 05/08/07
|
|
Your son will figure it out.
gordon@... | 05/09/07
|
|
A lot more information on Wireless Security
gordon@... | 05/09/07
|
|
Hope they all go bankrupt
High Sierra | 05/15/07
|
|
i actually think $1B seems low...
merenguegod@... | 05/15/07
|
|
It's the fines and replacement costs
georgeou | 05/30/07
|
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
