29 May
2007
29 May
'07
12:53 p.m.
On Tue, 29 May 2007, Matthew Black wrote:
What would you do if a major US computer security firm attempted to hack your site's servers and networks? Would you tell the company or let their experts figure it out?
I'd hold a very public discussion on the matter. If their people are intentionally trying to hack your network, they're probably using proprietary information in violation of some NDAs. It's also indicative of a larger problem. If their servers are compromised and are being remotely abused by a third party, that's something their clients need to know. If it's a spoof, that should also be publicly exposed and addressed.