Search My Blog

Monday, August 8, 2011

Why Hackers Find Many US Companies Easy to Hack? - International Business Times

Why Hackers Find Many US Companies Easy to Hack?

Employees at Oracle gave away most number of data.

By IB Times Staff Reporter | August 8, 2011 12:07 AM EDT

Why do big companies fall prey to cyber attacks very easily? According to hackers taking part in Defcon conference, the world's largest hacking convention in Las Vegas, workers at big corporations are poorly trained in security, which makes it "ridiculously easy" for hackers to trick them and reveal key information to plan cyber attacks against them.

At a time when large organizations like Sony Corp and International Monetary Fund (IMF) have been targeted for massive security breach, companies are expected to pay special attention to security. But unfortunately, employees at some of the largest U.S. companies lack the required knowledge of security, said hackers in a weekend contest at the hacking convention on Friday and Saturday.

Employees in the big companies were even managed to use their corporate computers to browse websites suggested by hackers (contestants). If they had been criminal hackers, malicious software would have likely been loaded onto the computers, a Reuters report said.

Pretending to be an employee of an IT company, one of the contestants successfully persuaded another employee to pass on information on the configuration of her PC. With the help of that information, a hacker can easily decide what would be the suitable malware to carry out the attack.

"For me it was a scary call because she was so willing to comply," Reuters quoted Chris Hadnagy, one of the organizers of the contest at the Defcon conference in Las Vegas.   "A lot of this could facilitate serious attacks if used by the right people."

A group of benevolent hackers organized Defcon in order to endorse research on security vulnerabilities, as well as to make companies aware of security issues to fix them. The weekend hacking contest was sponsored by white-hat hackers with a purpose to expose the security loopholes in companies and to encourage them to create awareness about risks of hacking among employees.

A wake up call for Oracle


I wonder if Computers on any Network will ever be Secure? It's an Ever Revolving Circle...


No comments: