- Easy, I invited the heads of the audit teams here. Please, Franz!

[rakhirhif8963]

— Can you give more details?


— Mr. Chancellor, Franz Eagle! Head of the Imperial Navy Audit Team. The audit conducted at the Stromm base revealed the following. The staff does not use multi-factor authentication. The security policy requires employees to use not only a password to access the IT infrastructure, but also a key that must be activated within a certain period of time after hiring. In practice, this period stretches out indefinitely. We managed to find an employee who has been logging in only with a password for the past seven years. At one facility, multi-factor authentication in the network was not provided at all. Thus, the system is vulnerable to phishing attacks and password theft.

— Or maybe this is just one such base?

- Alas, Mr. Chancellor. We have discovered unpatched jordan whatsapp data vulnerabilities at three out of five sites. And these are vulnerabilities for which patches were released five to twenty (!) years ago! At least at one base, the IT service did not install an antivirus.

— Mr. Chancellor, may I have some? Edward Traub, Air Force audit team. The audit revealed that employees of three missile defense bases did not encrypt data when copying it to removable media. According to them, it was impossible to meet the security requirement due to the technical backwardness of the systems used — they did not have the necessary encryption capabilities, and the pilots did not have the money for new software. In addition, the managers were technically unable to monitor compliance with the established rules.