List Digest, May 31, 2018

Phil Smith III

List Digest, May 31, 2018
Michael Hannan wrote, in part:
>Don't hear much about mainframes getting hacked! Only about users
>authorised to see the data, misusing it, or someone guessed his
>password, or found the list of passwords in the rubbish bin.

As Phil Grainger noted, this isn’t a safe position. Nor is it one that an auditor will sign off on. Essentially you’re saying “It hasn’t happened yet, so it won’t happen”. Not only is that not how a security person thinks, but it actually *has* happened, more than once, so it’s not even true, alas.