Archived version: https://archive.ph/vmEpv
Archived version: https://web.archive.org/web/20231224092642/https://www.fastcompany.com/91002831/us-water-utilities-hacked-cybersecurity
Archived version: https://archive.ph/vmEpv
Archived version: https://web.archive.org/web/20231224092642/https://www.fastcompany.com/91002831/us-water-utilities-hacked-cybersecurity
For all the measures companies take to secure everything from unauthorized access via breaches in security, there is *NO * greater threat to their system than the intended end-user.
Who can be dumb, lazy, complacent, or simply doesn’t give a shit. Usually those last two in my experience.
I’ve seen a setup that requires multiple pass codes and keys to get from any door to the server room, with reminders that personal devices are NEVER to be used with anything inside all along the way, and some chucklefuck sticks a flash drive with his music in the only pc in the room “so I can jam while I work, you know how it is, nobody will know”
My experience is: If you don’t want x to happen with computer systems, make it physically impossible. Cut the internal USB cables or super glue them shut.
I actually have worked in places where the company straight up took a screwdriver and physically broke every single usb port.
Also had to use a non-networked laptop where all the i/o ports were hot glued to keep whoever works on it from putting anything on it, since it was for a specific purpose.