GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Back to my original point: Equifax, like many big players in the Enterprise, did not give adequate attention to security. In the eyes of management, security is a cost, and costs must be minimized.
I'm not saying that's right and I'm certainly not saying it's moral, but that is how management thinks.
I heard on Colbert's show (we record it and listen to the interesting parts tomorrow, so it was Thursday night's show) that a person set up a copycat site with an altered name (instead of "equifaxsecurity*.*," it was "securityequifax*.*," then Equifax linked to the copycat site in a post on their website.
Equifax seems to have a very low competence score.
I heard on Colbert's show (we record it and listen to the interesting parts tomorrow, so it was Thursday night's show) that a person set up a copycat site with an altered name (instead of "equifaxsecurity*.*," it was "securityequifax*.*," then Equifax linked to the copycat site in a post on their website.
Equifax seems to have a very low competence score.
Low, more like non-existence. You would think after all that has happened they would at least vet any site they link to.
In allprofessions, we have the ability to hold anyone accountable, by requiring them to obtain a license to practice and by then holding over them the fact that they can lose that license.
Today, in software, any "pantser" who can spell <<PHP>> can work in the industry, most-especially if he is cheap. And, in the world of the "happy little cloud," a data-center can be located in any country where labor and electrical power are cheap, and on that data-center we put "the keys to our kingdom" even though our own nation's laws don't apply there.
It's as though every lesson we had learned had been un-learned when the computer became widespread about 20 years ago. But, as the losses grow toward the trillion-dollar mark, and the number of plaintiffs grows into the hundreds of millions, mark my words, this is about to change, for good.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.