Tuesday, March 6, 2007


Just to be contrary, here's a few reasons to panic.

  1. If you've never had a security incident, and have never spent a dime on securing your infrastructure.
  2. You store credit card numbers and social security numbers of all of your customers.
  3. Fire-what?
  4. You've written web applications, but don't recognize at least one of the following attacks: XSS, XSRF, SQL Injection.
  5. You think Solaris and Telnet are a winning combination.
  6. You believe there is no reason to need any "security" on a private network.
  7. You believe in your WEP-protected wireless network.
  8. You are more than six months behind in patches for your windows workstations.
  9. Your security solution is driven by a single GUI.
  10. Your break room budget exceeds your disaster recovery budget.

No comments: