To be fair, it was an external hosting company that was hacked, and not an NAI network
or host. A lot of companies seem to be falling into this trap - external hosting means
you don't have to maintain hosts and web server staff on your site, but it also means
that your name is out there on servers that you can't be sure are properly secured.
Given the potential for damage to reputations, I'm not convinced that the financial
savings are worth the risk.
(I don't know exactly which bug it was that was exploited, but according to the NAI
spokesperson, it was something for which a patch was issued on Nov 7th, which was a
rather long time ago in security terms.)
http://www.wired.com/news/business/0,1367,40445,00.html
Mike
----
Michael Owen
IT Security Engineer
NET-TEL Computer Systems Ltd
[EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
