Black Hat Fingers Email As Easy Target

In a world where even the dimmest network manager understands the need to deploy stripped-down, hardened servers behind bulletproof firewalls, Core Security's product manager, Max Caceres, told attendees to Black Hat Federal 2006 that attackers should take the easy route: Users.

Users offer a sloppy, target-rich environment with nearly unlimited access to trouble. They form a poorly guarded bridge between the internal network and the Internet.

Admins who allow email clients to receive unadulterated HTML documents are opening a hole in network security that can be very difficult to defend... especially once an attacker is inside the network perimeter. Black Hat Fingers Email As Easy Target

Linked by shanmuga Friday, 10th February 2006 2:46AM