Published: March/April Issue, 2018 | InTech Magazine
"We obsess over tools and technologies when we should be focused on culture and commitment. In the recent Equifax breach, which affected more than 143 million people, a routine security patch was not applied to a critical server. In the Target breach, which cost that company over $200 million dollars, a vendor's remote access was not properly managed, and the information technology (IT) department ignored clear signs that the network was compromised. The Russian hackers who shut down the Ukrainian electric grid, affecting more than 80,000 customers, used phishing emails to trick users and steal their network accounts. And in what may be one of the scariest industrial security incidents so far, unknown hackers who compromised a Schneider Electric Triconex safety controller in Saudi Arabia reached their target because an engineering workstation was not properly isolated and secured."
Click the link below to read the full article by Paul Rostick: