Microsoft Continues To Beat the Conflicker Drum
Listening to Tim Rains, director of Microsoft Trustworthy Computing, discuss today's release of the semi-annual Microsoft Security Intelligence Report (SIR), one might think it's 2008 all over again. And that's because Microsoft chose to spotlight that pesky Conficker worm that we've all been dealing with for the past four or so years.
So why is Microsoft sending up the smoke signals for a worm that hasn't seen a variant in over two years? Because the infection continues to spread. Microsoft said that over 600 million systems fell victim to it during the second half of 2011.
What's even more disheartening is the fact that 92 percent of these infections were caused by a hacker either swiping or guessing your password.
If I was a software developer like Microsoft, this figure would get under my skin. No matter how well you secure your products, no matter how quickly you respond to found vulnerabilities and no matter how much you beat the drum for stronger passwords (look at today's SIR release), you can't fully protect against bad habits and user ignorance.
How do you deal with user ignorance when it comes to passwords in your organization? Are you guilty of employing unsafe, yet easy-to-remember passwords? Let me know at firstname.lastname@example.org.