[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bloomberg on supermicro: sky is falling

Subject: bloomberg on supermicro: sky is falling
From: dtaylor at vocalabs.com (Daniel Taylor)
Date: Mon, 8 Oct 2018 08:53:55 -0500
In-reply-to: <9578293AE169674F9A048B2BC9A081B403008240F1@WAUPRDMBXP1.medline.com>
References: <[email protected]> <9578293AE169674F9A048B2BC9A081B403008240F1@WAUPRDMBXP1.medline.com>

That would be one way, but a lot of the problem is unplanned cross-access.

It's (relatively) easy to isolate network permissions and access at a 
single location, but once you have multi-site configurations it gets 
more complex.

Especially when you have companies out there that consider VPN a 
reasonable way to handle secure data transfer cross-connects with 
vendors or clients.

On 10/07/2018 10:53 PM, Naslund, Steve wrote:
> You just need to fire any contractor that allows a server with sensitive data out to an unknown address on the Internet.  Security 101.
>
> Steven Naslund
>
>> From: Eric Kuhnke <eric.kuhnke at gmail.com>
>>
>   >many contractors *do* have sensitive data on their networks with a gateway out to the public Internet.

-- 
Daniel Taylor          VP Operations            Vocal Laboratories, Inc.
dtaylor at vocalabs.com   http://www.vocalabs.com/            (612)235-5711

Follow-Ups:
- bloomberg on supermicro: sky is falling
  - From: valdis.kletnieks at vt.edu (valdis.kletnieks at vt.edu)

References:
- bloomberg on supermicro: sky is falling
  - From: surfer at mauigateway.com (Scott Weeks)
- bloomberg on supermicro: sky is falling
  - From: SNaslund at medline.com (Naslund, Steve)

Prev by Date: bloomberg on supermicro: sky is falling
Next by Date: Spoofer Report for NANOG for Sep 2018
Previous by thread: bloomberg on supermicro: sky is falling
Next by thread: bloomberg on supermicro: sky is falling
Index(es):
- Date
- Thread