Gawker tech boss admits site security was crap

Gawker tech boss admits site security was crap
Gawker tech boss admits site security was crap

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

Content-Transfer-Encoding: QUOTED-PRINTABLE

By Dan Goodin in San Francisco 
The Register
18th December 2010

Gawker Media plans to overhaul its web infrastructure and require 
employees to use two-factor authentication when accessing sensitive 
documents stored online, following an embarrassing attack that 
completely rooted the publisher's servers.

The publisher of Gawker, Gizmodo, and seven other popular websites also 
plans to, gasp, mandate the use of secure sockets layer encryption for 
all users with Gawker Media accounts on Google Apps, according to a memo 
written by Gawker tech boss Tom Plunkett and published Friday by The 
Next Web. The company-wide message conceded a point first made by the 
perpetrators of the hack: That Gawker Media's security was utter crap.

=E2=80=9CIt is clear that the Gawker tech team did not adequately secure our 
platform from an attack of this nature,=E2=80=9D Plunkett wrote. =E2=80=9CWe were also 
not prepared to respond when it was necessary.=E2=80=9D

Indeed, security researchers who examined the web platform's source code 
were amazed as just how poorly the site was put together.


Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure. 

Site design & layout copyright © 1986-2015 CodeGods