Symantec finally secures HackIsWack Symantec has belatedly secured its laughable HackIsWack competition website. The site - a collaboration between the security software firm and rapper Snoop Dogg - is designed to raise awareness about malware and identity theft by providing a forum for a user-generated cybercrime-themed rap competition. The site had a slow …
As is typical of many large firms the web site creation and maintenance was handed to someone that either had no experience in secure coding or just plain didn't know it or didn't care (above their paygrade). All too frequently, actually from my experience pretty much 99.9% of the time, security is either overlooked or only gets bolted on after it comes up on the CISO's radar or the site gets cracked or outed. So this isn't anything new. It happens and will continue to happen until security is on the initial requirements check list and incorporated into the architectural design. I prefer engineering blueprint but I'm definitely in the minority even though my software has always had zero defects and been secure and I built suites, not small apps. Hey, what do I know?
It'd be funny if I weren't crying so much.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
