> > Does it not strike anyone that there is a > disturbing trend in > > malicious hackers (yes, yes, I know, they are not > hackers if > > they are malicious, so call em whatever you want) > getting > > hired to security firms,
Regardless of the reason for hiring these individuals, this fact should be noted by any organization subject to legal or regulatory compliance with regards to computer/information security. While the laws in the US do not specifically stipulate that reputable firms must be used when seeking compliance with vuln/risk assessments, etc., one would hope that the professional reputation of the assessing firm would be considered, as well. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
