Small-time security threats bigger concern

[InfoSec News <alerts () infosecnews org>]

http://www.autonews.com/article/20150309/FINANCE_AND_INSURANCE/303099941/small-time-security-threats-bigger-concern

By David Barkholz
Automotive News
March 9, 2015

The biggest threats to a dealership's data aren't Russian hackers breaking 
through electronic firewalls or robots trying a thousand passwords on 
security codes until they finally crack into the system.

It's more likely the mundane stuff that will cause a breach that enables 
personal consumer data to slip out of the store, said Brad Miller, 
director of legal and regulatory affairs for the National Automobile 
Dealers Association.

Watch out, he said, for laptops that may contain sensitive files being 
stolen out of cars. A thumb drive that contains code capable of capturing 
passwords or data can be plugged into the laptop.

Also, software vendors long ago dropped by a dealership may retain active 
pass codes that enable data to be taken from the dealership, unbeknownst 
to store employees, Miller said. Or pirates may send dealership employees 
a "phishing" email hoping to fool one into giving out information or a 
password that opens the system to the thieves.

[...]



--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/