|
||
|
Title: Rogue employees sell passport data of World Cup fa Post by Pete Finnigan on Sep 11th, 2010, 1:11pm Passport details of more than 35000 English fans who visited the 2006 World Cup in Germany have been sold to the black market: http://www.net-security.org/secworld.php?id=9855 Some quotes: "Although this was clearly illegal, it also calls into question the internal security practices within football's international governing body whose IT managers who really should know better. It confirms something we've been saying for some time, namely that most organizations defend their digital assets against external attack, but they ignore the internal threat at their peril," "The employees did not hack into the database, it was an internal attack where they abused normal functionality and privileges granted to them. This was probably a case of over privileged users as these low level employees probably should not have been granted access to that data in the first place." |
||
|
Powered by YaBB 1 Gold - SP 1.4! Forum software copyright © 2000-2004 Yet another Bulletin Board |