Business
Why ‘blaming the intern’ won’t save startups from cybersecurity liability
SolarWinds is back in hot water after a shareholder lawsuit accused the company of poor security practices, which they say allowed hackers to break into at least nine U.S. government agencies and hundreds of companies.
The lawsuit said SolarWinds used an easily guessable password “solarwinds123” on an update server, which was subsequently breached by hackers “likely Russian in origin.” SolarWinds chief executive Sudhakar Ramakrishna, speaking at a congressional hearing in March, blamed the weak password on an intern.
There are countless cases of companies bearing the brunt from breaches caused by vendors and contractors across the supply chain.
Experts are still trying to understand just how the hackers broke into SolarWinds servers. But the weak password does reveal wider issues about the company’s security practices — including how the easily guessable password was allowed to be set to begin with.
Even if the intern is held culpable, SolarWinds still faces what’s known as vicarious liability — and that can lead to hefty penalties.
-
Entertainment6 days ago
iPad Pro 2024 now has OLED: 5 reasons this is a big deal
-
Entertainment6 days ago
‘Stardew Valley’ has an official cookbook. Here’s how to make Seafoam Pudding.
-
Business6 days ago
Legion’s founder aims to close the gap between what employers and workers need
-
Business5 days ago
Checkfirst raises $1.5M pre-seed, applying AI to remote inspections and audits
-
Business3 days ago
AI chip startup DEEPX secures $80M Series C at a $529M valuation
-
Business4 days ago
Retell AI lets businesses build ‘voice agents’ to answer phone calls
-
Entertainment3 days ago
'House of the Dragon' recap: Every death, ranked by gruesomeness
-
Entertainment4 days ago
8 reasons ‘Evil’ is the greatest show you’re not watching