Re: Even Password Management tools can cause problems.
@Broadway, I want to apologize if you misunderstood my zipper comment. That was not intended to be an insult, I was just trying to point out all the boring, mundane places you use our product everyday. One of our customers was American Zipper. Not sure anymore, that is example of easy stuff to make that Peru and China excel in with their low cost.
Two key takeaways from what I was trying to say:
1) Many companies are like us, have no data which is used in bank or identity theft. You get one of our Sales laptops, you might get a list of contacts at our customers containing Name, company address and their work phone number. HR does not have client computers with employee info, all that is server based. So our stupidest employee can't impact your life, period.
2) My main reason for replying to you was trying to figure how you envisioned a system where you feed every employee you hire thru a vetting process to make sure they have high quality computer security understanding and are immune to every phishing exploit. I'm only IT guy here and my job is development. You want me to get involved in every hire and give yay/nay based on whther I think they are tech savvy?
For existing hires, are you suggesting we fire a person who is very good at their core job because they click on link which infects them with malware? Or someone steals their laptop while traveling? If so, what guarantee do we have the next employee can even do their core job, much less be better at security issues? When you get a good employee at their discipline, you keep them. If you know another world than that, please enlighten me.
This whole article and forum is way off base anyway. There is only one core stupid move that is killing everybody: Connecting ridiculously insecure client computers (Yeah Windows, I'm talking about you) to the freaking internet to do business. We are sitting here debating password strength issues when clicking on wrong link in email or web site can modify your core o/s to install software to capture your every keystroke and screen image and send it home to the bad guys.
Talk about stupid. We are sitting here debating how to best lock the door when the wall has a freaking hole in it. I spent 15 years working in the pre internet age, when businesses used servers with dumb terminals and private circuits. We had none of these problems, period. If we knew what we know now, is online banking and POS card purchasing worth it? If so, just how lazy (or stupid) are we as consumers? I'm on my 3rd debit card, other two were tried to be used on the other side of world.