Consider this: If you or an employee is using free Wi-Fi in some local café, in a matter of seconds a hacker can manipulate your machine into a "man-in-the-middle" scenario, where the device is now a conduit that sends data right to the bad guy. Once a device is compromised, login credentials (corporate mail server, bank accounts, LinkedIn.com, Facebook.com, etc.) can be harvested by using SSL Stripping.
- SecurIT 2019: In an increasingly-encrypted world, visibility is more important than ever
- SecurIT 2019: Being a CSO is like Game of Thrones
- SecurIT 2019: Hackers may be in it for Lulz, but CSOs are in it for their lives
- Despite high-profile hacks, companies still aren’t behaving securely: ex-LulzSec hacker
- Researchers probe shady, dangerous stalkerware app industry