You know when you accepted the risk, boss?
This is the risk.
this post was submitted on 23 Jul 2025
24 points (100.0% liked)
Cybersecurity
0 readers
51 users here now
An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!
Rules
Community Rules
- Be kind
- Limit promotional activities
- Non-cybersecurity posts should be redirected to other communities within infosec.pub.
founded 2 years ago
MODERATORS
"IT is too expensive, let's outsource it. "Outsourcing is too expensive, let's subcontract" "Anyone can do x part of job if you break it down enough"
These financial analysts are looking at 10 randos standing on a basketball court and making the argument they collectively should be able to replace one college athlete. It's simply not how it works most of the time, and the longer the approach is tried the more things break. It's why so many things are so difficult with companies, why our jobs are hard--and that's before even factoring in the rate of change in society technology and economy.
It’s that easy huh?
It's not even "pretend to be the county password Inspector". It's literally just "hi, can I have access?"
@Jerry@hear-me.social Even if a door is unbreakable, the walls might not be.
Surprisingly, even the best security measures can be easily overcome by simple social engineering. This case should remind us of the importance of including everyone in a security strategy. It is crucial to consistently teach and explain to all employees why security is important and how to implement best practices at every level of a company. Unfortunately, many companies, like Clorox, fail to educate all employees, leaving themselves wide open to social engineering attacks.