A simulated cyber-attack on your type of financial institution just occurred! Hear FS-ISAC's Bill Nelson report on their cyber attack drill and the results at May Mainframe Madness. Register FREE at ca.com/mmm
So you thought you were safe?
Have you ever experienced something like this: You have developed a system or application, tested it, and it runs fine. Stable and safe. Then suddenly a new colleague or employee comes in who uses your system and does something you never thought of. I've experienced it, and still remember thinking: "What on earth just happened?" He or she just did the unthinkable, or better said, did something you never envisioned a sane person would ever do...
Creating a full-proof (or fool-proof) system is impossible with today's complex & connected systems. I remember hacking my first system by entering an SQL code on a web-form instead of my name and getting access to the SQL-Server database it was running on. I reported it and all the person in question could say was: "But you were supposed to type your name there. Why would you enter something that complex?". Well, because I COULD... IT Staff, like any other human being, is often ignorant. WE would not do that, so why would anybody else?
Many of today's hackers are not nice people. They are criminals, just like bank robbers and the people who steal handbags from old ladies. And the smart IT savvy criminals will sell their skills to the highest bidder; it's as simple as that. Just like the first guy who knew how to use a thermo lance to break into a vault was for hire by anybody with cash, a hacker with criminal intend will soon be known in that world. And believe me, these guys are good!! They will use methods you cannot even dream off, and probably some you dreamt about and want to forget.
The things you do in normal life (lock your doors, don't go into dark alleys, keep your wallet in your breast pocket instead of in the back of your pants), you do because you not only heard that these are the right thing to do, but also because you CAN actually think like a criminal. Now let's go back to IT. How many of the systems you built have a built in safety net in them? Have you ever even thought about doing that? We can all use some smart advice, and we can all use someone telling us to NOT leave a ladder outside the house that Can help a burglar to get in easier...
On May 10th, we have someone like that for you. During CA's May Mainframe Madness, FS-ISIC's Bill Nelson will explain a cyber attack and the results. You'll definitely learn something new. Register now at www.ca.com/mainframe/may and get the most of the experience of a real expert.