I completely have the wrong viewpoint on these kinds of things (despite the fact that my older son is a security person working with NIST).
I never woulda thunkit… From: [email protected] [mailto:[email protected]] On Behalf Of Richard Stovall Sent: Thursday, October 12, 2017 7:05 PM To: [email protected] Subject: Re: [NTSysADM] A different kind of 3rd party risk On a similar (not really, but kind of) note, I present (courtesy of today's SANS @Risk): The Absurdly Underestimated Dangers of CSV Injection http://georgemauer.net/2017/10/07/csv-injection.html Seriously. On Tue, Oct 3, 2017 at 11:03 PM, Kurt Buff <[email protected]<mailto:[email protected]>> wrote: https://medium.freecodecamp.org/how-i-hacked-hundreds-of-companies-through-their-helpdesk-b7680ddc2d4c
