Nedbank client data hack - The security issues at Computer Facilities

Bradley Prior

MyBroadband Journalist
Staff member
Super Moderator
Joined
Oct 16, 2018
Messages
3,022

Daruk

Honorary Master
Joined
Jul 18, 2008
Messages
44,890
Vulnerability scanners should be a priority.
 

RonSwanson

Expert Member
Joined
May 21, 2018
Messages
2,376
Vulnerability scanners should be a priority.
Scanning just puts it in a 6000 page report which no-one reads. For it to be useful, someone needs to read it, prioritise and act on it. Like patching, as well as upgrading ancient systems (Windows Server 2008?:laugh:). There's no excuse, if for some reason one can't patch or upgrade, then learn how to configure a WAF and IPS, and then remember to patch again when it is possible. 10 year old vulnerabilities (some with CVSS ratings greater than 9) are simply not acceptable on a financial institutions' Internet facing systems. Especially not when they have deep pockets (2 billion per year for upgrades).
 

hj007

Senior Member
Joined
Aug 30, 2006
Messages
658
The difference in repercussions between SA data leaks and the US continues to astound me every time.
 
Top