ST1100Y
Site Supporter
The amount of ignorance and greenness paired with a massive resistant to advice within corporate floors is always amazing...Just another lack in security... I worked for a small company a couple years ago and 1st thing I said was "that's all you have to do to get into the servers?" They were confident security was fine, has been for years... 3 months later - ransomeware attach and they were very lucky the source code was backed up offline but 3 terabytes of historical data and the setup files to create an executable version of the software were zapped.
All it takes is someone plugging an not-screened thumb-drive into an office PC, clicking on a dubious link/attachment in a SPAM mail...
(and then there those folks laughing at me over running security software on my smart TV and the phone...)
And what actually hits the headlines is barely the tip of the iceberg...