201
Crooks Steal Phone, SMS Records for Nearly All AT&T Customers. (krebsonsecurity.com)
submitted 1 month ago by ModerateImprovement@sh.itjust.works to c/technology@lemmy.world
31 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] sunzu@kbin.run -5 points 1 month ago

I would posit it: 1) gross negligence on part of the "leadership" or/and 2) inside job by the staff

Article implies a third party did the job tho

[-] BassTurd@lemmy.world 3 points 1 month ago

Historically, how many of these days breaches have been linked to an inside person? The answer is almost none. Your first point is correct that someone (s) was likely was negligent, but your second point is tin foil bullshit. Maybe if there was any indication of foul play, the accusation has merit, but there's been none. Like almost all other breaches, it was likely a third party.

[-] sunzu@kbin.run -1 points 1 month ago* (last edited 1 month ago)

It would be nearly impossible to prove without inside knowledge...

However the fact that these breaches happen so often, would make one wonder how everybody is this "negligent" all the time.

There is a large economic incentive here BTW

But hey at least we can train AI with this data. Thank you for your service peasants.

Execs dindu nuffin mate just getting paid big bucks for "negligece"

[-] BassTurd@lemmy.world 4 points 1 month ago

Cyber security is a very complicated field. There are an infinite number of ways that someone could have breached security. It could have been and statistically was a social engineering attack.

There are software vulnerabilities all of the time that can be exploited for access. Recently SSH was discovered to be vulnerable across all Linux machines running at least a certain version of SSH. It didn't require the victim to do anything but be online.

Microsoft had a zero day that required no interaction that could give kernel level access to a users computer with them knowing.

Neither of those are likely the culprit, but ATT is a large company that has valuable data that hackers wouldn't mind putting extra effort into getting. At my current company that works with healthcare information, the number of attempts on us this year, that we are aware of, has more than tripled from all of last year.

Point being, some was probably negligent in that they clicked a bad link in an email, gave away something sensitive of a phishing call, or some other social engineering attack, because humans are often the weakest point in cyber security.

load more comments (2 replies)
load more comments (2 replies)
load more comments (4 replies)
this post was submitted on 12 Jul 2024
201 points (99.5% liked)

Technology

57226 readers
3876 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world