this post was submitted on 04 Dec 2024
30 points (100.0% liked)

Pulse of Truth

519 readers
52 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
 

High-risk access exists throughout the workplace, in almost every job role, proving that the time has come for organizations to re-think the way they protect their workforce, according to CyberArk. CyberArk surveyed 14,003 employees in the UK, USA, France, Germany, Australia and Singapore to uncover workforce behaviors that security teams are most keen to put a stop to. Employees depend on privileged access to complete daily tasks These days, almost all employees have some kind … More → The post 65% of office workers bypass cybersecurity to boost productivity appeared first on Help Net Security.

you are viewing a single comment's thread
view the rest of the comments
[–] corroded 9 points 2 weeks ago (1 children)

I understand the need for security in a corporate setting. When my brand new company laptop has so much nannyware that it's slower out of the box than my 20-year-old netbook that I dug out of a box in the attic, something is very wrong, though.

I firmly believe that IT departments come up with new ideas for "hardening" their default OS installation and implement them in a vacuum. You end up with a barely-usable machine because every single IT person with a "good idea" has infected it with their software package of choice, and nobody is considering the cumulative effect.

[–] Zulu 5 points 2 weeks ago

You arent far from the truth.

In my experience it boils down to middle-management "tech-bro" types that still use norton antivirus thinking that if they just pay more money and install new software on top of windows defender everything will be fine.

When instead they should be enforcing multifactor authentication on the executives accounts.

But hey, I'm sure that executive that's been given too much access since they "own the company" would be bothered if they had to reach for their phone one extra time a day.

That or janice from accounting that has 20 years of privileges handling payroll and keeps her passwords in an excel doc on her desktop labeled "passwords".

But yes, a $20k a year subscription to an SIEM sold to you by some marketing guy will solve security needs. It just needs to build a profile on you and collect all your info! One more ai bot and we'll solve tech security!

Hey look amazon shipped me a free item, i just need to open this pdf and give it admin access to retrieve it!