On Thu, Jan 5, 2012 at 3:37 PM, Tobie Fysh <[email protected]> wrote: > There is enough info there to ring the user and pretend to be > the IT department and get some social engineering in play but > that’s more to do with user education.
A basic rule of security is, don't make things any easier for an attacker than you have to. I suspect that's Mitnick's point. One complaint we have with Windows Vista is that if the screensaver engages and locks, when you dismiss the screen saver, for a fraction of a second, you can see the user's desktop before it is hidden and the lock screen appears. Not good if there is sensitive information displayed. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
