Robert Maley, Pennsylvania's CISO (Chief Information Security Officer) was terminated after mentioning a recent incident at the early March RSA security conference. A driving school was able to circumvent security to schedule its students ahead of others in the queue.
Rules governing Pennsylvania State employees require prior approval before discussing official matters publicly, but it seems that he aired some dirty linen (2008 cross-site scripting vulnerability in a voter registration website, SQL injection attacks, etc.) and the driving school case was under active investigation. For more see the IT Knowledge Exchange and a Computer World interview with Maley.
A random mental walk.
Friday, March 12, 2010
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment