I came across an intriguing article in a 2009 issue of Fortune magazine about how businesswoman Dina Wein Reis duped high-profile executives, ultimately costing their corporations millions of dollars. In the final paragraph the author states:
Don deKieffer, the lawyer who pursued Wein Reis for years, says that companies will always be susceptible to such schemes as long as executives are so trusting. “In almost every case you had people inside the company not paying attention to the good of the entire enterprise,” says deKieffer. “There are bad people out there — wolves who will eat you unless you pay attention.”
If this doesn’t summarize the very essence of the problem we have with information security today, I don’t know what does. It’s really nothing new. Just look at the infamous hackers from our time – many of them preyed upon this very weakness. Very enlightening insight into the executive psyche. I’ve always believed that as long as people are involved with IT, we’ll always have information security problems.
For further reading, check out these pieces I’ve written on the subject of people and information security.
Kevin Beaver is an independent information security consultant, expert witness, author, and professional speaker with Atlanta-based Principle Logic, LLC and a contributor to the IT Watch Blog. You can reach Kevin through his website at www.principlelogic.com and follow him on Twitter at @kevinbeaver.