this post was submitted on 26 Sep 2024
-9 points (36.4% liked)

Sysadmin

7757 readers
26 users here now

A community dedicated to the profession of IT Systems Administration

No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
!lemmy@lemmy.ml
!lemmyworld@lemmy.world
!lemmy_support@lemmy.ml
!support@lemmy.world

founded 2 years ago
MODERATORS
 

That's sounds strange to say but hear me out. Before ransomeware there was no economic incentive for companies to worry about security. There was a strong "why would you hack us" vibe that made it hard to talk management into doing anything basic like locking down ports.

Nowadays everyone and there mom is worried about getting compromised. I've seen companies who historically didn't care at all about IT suddenly invest heavily in security. We are now much more secure than we were previously as everyone has suddenly realized that the internet had a huge risk. I doubt we will see any of the old style worms we had back in the day that would infect millions of machines.

all 11 comments
sorted by: hot top controversial new old
[–] Resco@lem.afiz.org 1 points 2 days ago

It's sad that people are trying to improve things only by fear and not be reason :(

[–] marcos@lemmy.world 15 points 2 months ago (2 children)

Just a reminder that the internet was recently shredded exactly by the security infrastructure.

[–] c10l@lemmy.world 3 points 2 months ago

If you’re talking about CrowdStrike, I’d call it part of the malware infrastructure.

From the perspective of the OP’s point though, it is a good argument since it capitalises on the panic described.

[–] zoostation@lemmy.world 6 points 2 months ago

Hooray for criminals, who stimulate progress towards protection from criminals. Kings.

[–] slazer2au@lemmy.world 6 points 2 months ago (1 children)

The problem is all the buying is purely so they can tick boxes on an insurance form.

We see it with our customers all the time, they request thing for cyber insurance reasons like a SIEM or EDR, but no one is checking the systems.

[–] possiblylinux127@lemmy.zip 2 points 2 months ago (1 children)

No one is checking until they get breached. The attacks are slowly forcing the industry to improve.

[–] JasonDJ@lemmy.zip 4 points 2 months ago

If the firewall is breached, and nobody is around to read the SIEM logs, was there ever a hack?

[–] beeng@discuss.tchncs.de 4 points 2 months ago

So like the gun manufacturer that made everybody else need more guns?

Yeah was good for the manufacturer.

Picks and shovels...

[–] A_A@lemmy.world 1 points 2 months ago

i agree with this because for me the problem is more vulnerabilities, bloatware and negligence than anything else.

[–] sylver_dragon@lemmy.world 1 points 2 months ago

This seems suspiciously similar to the Parable of the broken window. Sure, overall security has increased, but it has costs. That said, since we will invariably have criminals, it has been a good thing that companies and individuals have gotten more aware of the risks and are taking actions to protect themselves.