A bad day in IT is when you discover that one of your servers has been compromised. A really bad day is when you realize:

…the compromised machine was one of the state government’s smaller servers. But it was used by the Division of Motor Vehicles for processing payments by credit or debit card. And by the state Liquor Commission as a backup system for processing sales at state-owned liquor stores. And for collecting donations to support the New Hampshire Veterans Home.”

It gets worse when you realize that:

“They knew they were stretched too thin on security, which is why they were testing an automated intrusion-detection tool. That’s how the Cain & Abel program, which can capture credit card numbers, was discovered.”

Yes, a bad day is when you find Cain & Abel installed on a server that houses credit card data for three different organizations. And I thought my week was rough :)
.com
Full Story

About the author

Paul Asadoorian is the Founder & CEO of Security Weekly, where the flagship show recently re-titled "Paul's Security Weekly" has been airing for over 8 years. By day he is the Product Evangelist for Tenable Network Security. Paul produces and hosts the various shows here at Security Weekly, all dedicated to providing the latest security news, interviews with the industries finest and technical how-to segments. Paul is also the founder and host of "The Stogie Geeks Show", featuring cigar reviews for cigar enthusiasts.

Leave a Reply