Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Social flaws / vulnerabilities in 'Last account activity' on Gmail
From: Valdis.Kletnieks () vt edu
Date: Sat, 20 Sep 2008 23:01:20 -0400

On Sat, 20 Sep 2008 21:47:55 BST, AaRoNg11 said:

If the job was that sensitive of a job, do you really think they'd be using
gmail to send important information?

Remember - n3td3v is in the British Isles, where clusterfuck IT is rampant in
the government sector.  You know, like "Let's lose the financial details of
*EVERY SINGLE FRIKKING FAMILY IN THE COUNTRY on an UNENCRYPTED DISK".

Oh, why was the disk unencrypted? Because the policy on how to securely
transfer the data was deemed so sensitive that it was only accessible to
upper management - the people *doing* the work didn't have access to the
policy of how to do it right.

Attachment: _bin
Description:

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]