Advice requested

• Previous message (by thread): Advice requested
• Next message (by thread): Advice requested
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 29 May 2007, Matthew Black wrote:

> What would you do if a major US computer security firm
> attempted to hack your site's servers and networks?
> Would you tell the company or let their experts figure
> it out?

I'd hold a very public discussion on the matter.

If their people are intentionally trying to hack your network, they're 
probably using proprietary information in violation of some NDAs.

It's also indicative of a larger problem.

If their servers are compromised and are being remotely abused by a third 
party, that's something their clients need to know.

If it's a spoof, that should also be publicly exposed and addressed.

• Previous message (by thread): Advice requested
• Next message (by thread): Advice requested
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]