The Inquirer, a British web site that is ground zero for computer industry gossip - Austin American Statesman
|
|
|
US needs better cyber defence
PATCH AND PRAY businesses need better cyber intelligence and protection in the US, according to a study from the Intelligence and National Security Alliance.
The report will be released next month, according to a story by the Associated Press, and will recommend, amongst other things, that the US create systems that can flag computer-based attacks and deter them.
Possibly reeling from the attacks meted out by groups such as Anonymous and Lulzsec, and the recent warning from Team Poison about 9/11 hacking attacks, the group warned that action must be taken now, before it gets much, much worse.
"The impact [of attacks] has increased in magnitude, and the potential for catastrophic collapse of a company has grown," says the report.
As well as warning about attacks, and whipping up fear about the potential for them, the report will explains that businesses do not understand or expect them, a claim that might be a bit patronising.
The INSA is a non-partisan organisation led by Frances Townsend, who was homeland security adviser in the Bush administration, and its warnings and message echo those of more obviously government aligned groups like the Pentagon, for example.
It recommends that businesses and organisations share more information with the government, and that the government use this and other information to create strong cyber defence capabilities. µ
Tags: Security
Share this:
Share
Well, obviously if you look at Sony, these words can feel justified.
That said, I think that there is a sufficiently large number of companies that offer consulting services and/or products concerning security, and that have been doing so for long enough to ensure that companies are indeed aware of the potential issues.
Add to that the fact that there are many developer sites devoted to explaining why SQL injections are possible, why it is required to sanitize inputs and how one can limit one's vulnerability to hacks that I doubt any professional programmer worthy of the name is not at least aware of the problem.
Finally, I find quite ridiculous that a government organization tries to explain web security to private companies when government sites are and always have been among the most vulnerable ones available.
Tell you what, INSA jockeys, how about you go and clean up your own front porch before commenting on how the neighbor's windows look dirty, hmm ?