Comment Re:That's no excuse. (Score 1) 57
What concerns me the most is that justifying a security flaw as minor because of the cost involved in exploiting it is completely backwards.
If anyone can exploit a security hole, then script kiddies get the information out, flaunt it, and completely eliminate the value of the, ahem, stolen, information. If a security hole needs a lot to crack it, then it provides incentives for less than reputable groups to exploit the crack to obtain information to sell to other less than reputable groups.
I know that a lot of people would disagree with me but I'm a lot more scared of someone who knows information and is totally unethical (think organized crime, terrorist organizations, governments) than some wannabe with no clue what they've got their hands on.
The M$oft hack proved, IMHO, that people who know what they're doing are going to turn this into an underground industry. Spend $25K on equipment and time, steal $5M in data from private information systems, and resell on the black market for $2.5M. Earn an exponential return on your investment and retire early!!!
WEP needs to review their security procedures. Their logic is fundamentally flawed.
If anyone can exploit a security hole, then script kiddies get the information out, flaunt it, and completely eliminate the value of the, ahem, stolen, information. If a security hole needs a lot to crack it, then it provides incentives for less than reputable groups to exploit the crack to obtain information to sell to other less than reputable groups.
I know that a lot of people would disagree with me but I'm a lot more scared of someone who knows information and is totally unethical (think organized crime, terrorist organizations, governments) than some wannabe with no clue what they've got their hands on.
The M$oft hack proved, IMHO, that people who know what they're doing are going to turn this into an underground industry. Spend $25K on equipment and time, steal $5M in data from private information systems, and resell on the black market for $2.5M. Earn an exponential return on your investment and retire early!!!
WEP needs to review their security procedures. Their logic is fundamentally flawed.
