You hear a lot about them because they are used in government and large enterprise environments when threat actors love to attack.
Having a responsible disclosure process where they announce problems so their customers know it’s patching time. It’s better then it use to be where a vendor threw out a patch and if you didn’t patch because the vendor didn’t say why the patch was released.
There’s a reason why Isolated Networks are big money these days. Everyone expects their shit connected to the internet will be hit eventually and anyone that thinks they are safe are probably already being hit.
I probably should have used the analogy my VD doctor gave me, “If you keep dippin your tip even with the best of protection on you’ll eventually find a walking biohazard that even I can’t bring you back from.”
Because all software is insecure.
You hear a lot about them because they are used in government and large enterprise environments when threat actors love to attack.
Having a responsible disclosure process where they announce problems so their customers know it’s patching time. It’s better then it use to be where a vendor threw out a patch and if you didn’t patch because the vendor didn’t say why the patch was released.
There’s a reason why Isolated Networks are big money these days. Everyone expects their shit connected to the internet will be hit eventually and anyone that thinks they are safe are probably already being hit.
Is that the IT Sec version of “If you think you’re never wrong, you already are”?
I probably should have used the analogy my VD doctor gave me, “If you keep dippin your tip even with the best of protection on you’ll eventually find a walking biohazard that even I can’t bring you back from.”