Internet security and your business

[Business Brian]

It's been eye-opening to see just how poorly some businesses take internet security.

For example, I was at one small business, where graphic design work for customers is carried out on a PC connected to Broadband internet.

No anti-virus software. No firewall.

The designer mentioned something about getting a lot of pop-ups.

I downloaded some software onto his machine to check. Yup - he had adware and spyware installed – including Gator. I removed them, fixed some other security issues, and put Zonealarm on their PC to act as a basic Firewall.

Elsewhere, a funny thing happened at a training center, where their users train up on a network of PCs. I was using one machine when I noticed text in my own forum was inexplicably affiliate linked to other sites.

You guessed it – a good string of adware and spyware programs were present – Gator again, and the links were caused by a Xupiter hijack of IE.

Incredibly, the staff who worked at the training centre seemed to have absolutely no idea about security issues. They had one single (and out of date) virus guard installed, and simply out-sourced internet security to another company - who were obviously doing a completely crap job of it.

The point here is that even a simple understanding of internet security could have saved them money. And, of course, act to prevent malicious use of their machines.

In both examples the poor understanding of internet security could have lead to very real and serious damage to their PCs. It would have been easy for a script kiddie to insert one of more Trojans at either companies, and then siphon off passwords and even credit card card information, if used. Any conceivable amount of damage could have been caused to their machines.

In these examples, steps were taken to face the issue.

However, and quite astonishingly - despite my warnings and initial (stop-gap) addressing the issue for them, both companies continue to ignore basic security issues and leave themselves wide open to malicious use of their machines.

I guess some people absolutely need to be burned.

[becki]

Were any of these government agencies, by any chance?

[altyfc]

Looking at security from another viewpoint, I know of a number of businesses that have their usernames and passwords for access to critical things, nicely pinned to their noticeboard, often in areas visible to the public.  Tut, tut.
 
Aaron

[Business Brian]

Were any of these government agencies, by any chance?

How did you guess.

[Business Brian]

Looking at security from another viewpoint, I know of a number of businesses that have their usernames and passwords for access to critical things, nicely pinned to their noticeboard, often in areas visible to the public. Tut, tut.
 
Aaron

Now that is just plain scary!

[Suzanne]

Looking at security from another viewpoint, I know of a number of businesses that have their usernames and passwords for access to critical things, nicely pinned to their noticeboard, often in areas visible to the public. Tut, tut.
 
 Aaron

 I can see that in the White House. With another piece of paper to remind George how to spell his name.

[Business Brian]

Hi Suzanne!! You finally made it in! Are you going to introduce yourself on the "Introductions" board?