I ran across this article from an information security professional who is baffled why so many people are still fooled by known threat attacks and why security tools and technologies don’t have the necessary controls in place to protect our data and systems. He provided a short list of these questions, which is very interesting. I am curious how some of you feel about them…
- How can people in this day and age readily send thousands of dollars to strangers for deals they already know are too good to be true?
- How come people believe every fake virus warning they see, yet not take the slightest precautions against real viruses?
- How come it took over a decade for DNSSEC to be approved — and why are organizations not implementing it?
- Why is it taking so long for IPv6 and its protections to be implemented?
- Why are we using perimeter firewalls when they don’t appear to stop hackers or malware, and instead just frustrate legitimate users?
- Why does my antispam service block some spam messages while letting other near-identical ones slip through?
- Why haven’t my multiple antispam services figured out that I don’t want to receive messages written in a language other than English?
- Why isn’t snopes.com on everyone’s favorites list, especially those who fall victim to hoax after hoax?
- Why does it seem like no young people care about privacy?
- Why don’t most companies teach their end-users about the latest threats, such as fake antivirus warnings, advanced persistent threats, and so on?
- Why does almost every company fail to perform basic patching?
- Why is it easier to teach 3-year-olds about computers than 70-year olds?
- Why are we still living with inaccurate antivirus scanning programs 20 years later?
- Why are popular mobile app stores full of malware in today’s day and age?
- Why are we inventing new protocols and services that don’t have security ingrained from the very beginning?
- Why do the security questions that supposedly protect your password require information that can easily be gleaned off the Internet?
- Why do some CEOs still think that advanced persistent threats are overhyped until it’s shown their organizations have been compromised for years?
- Why don’t all computer apps automatically and invisibly patch themselves?
- Why are computer users more likely to be dupedy by malware and scammers today than 10 years ago?
For more information go to: http://www.infoworld.com/d/security/the-19-most-maddening-security-questions-187983
Follow
