{"id":50739,"date":"2025-06-23T23:09:41","date_gmt":"2025-06-24T04:09:41","guid":{"rendered":"https:\/\/totfc.net\/?p=50739"},"modified":"2025-06-26T23:09:46","modified_gmt":"2025-06-27T04:09:46","slug":"i-think-companies-should-be-more-zero-tolerance-about-security-breaches","status":"publish","type":"post","link":"https:\/\/totfc.net\/?p=50739","title":{"rendered":"I think companies should be more zero tolerance about security breaches"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"border-image alignnone wp-image-50740 size-full\" src=\"http:\/\/totfc.net\/wp-content\/uploads\/2025\/06\/cereal_killer_phish.jpg\" alt=\"\" width=\"560\" height=\"231\" srcset=\"https:\/\/totfc.net\/wp-content\/uploads\/2025\/06\/cereal_killer_phish.jpg 560w, https:\/\/totfc.net\/wp-content\/uploads\/2025\/06\/cereal_killer_phish-300x124.jpg 300w\" sizes=\"auto, (max-width: 560px) 100vw, 560px\" \/><\/p>\n<p><span style=\"font-size: 16px;\">A little while ago, I was having a stressful morning at the office.\u00a0 My workload has been quite high over the last few weeks and the quality of the projects I\u2019m on have been leaving a lot to be desired as far as the competency of those I\u2019m required to collaborate with, and I spent more time in meetings than I do actually working on most days of the week.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">But to top it all off, my company\u2019s IT department sent out a company-wide mandate about sweeping security changes, with a little less than 48 hours of lead time.\u00a0 My first thought was, when the fuck am I going to have time to go through any of this bullshit when I can barely, actually cannot, get through my own preexisting workload on a regular basis?<\/span><\/p>\n<p><span style=\"font-size: 16px;\">I prioritized this less than the importance of finding a quiet bathroom to take a breather in and went on with my days, but unlike a lot of the bluffs that IT sends out, on Wednesday morning, I finally hit a point where all my authentications had expired, and it was now time to reauthenticate onto the network and all the shit controlled by our SSO procedures.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">Naturally, since I had neglected to address it when initially notified, I had to scramble to get back on the network, and unsurprisingly the instructions that were sent by IT on what we needed to do weren\u2019t working.\u00a0 I\u2019m no engineer, but I\u2019m technically competent enough to be able to follow directions, and when shit wasn\u2019t working, I had to go down to our IT floor, which is the pain in the ass I don\u2019t want to do it equivalent to mythical wife\u2019s feelings about needing to speak to someone on the phone.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">Turns out there was still something that IT had to do with each and every user, which wasn\u2019t mentioned, and within five minutes of having to get some face time with IT, my issues are resolved, and I could be on my merry way, but not without having derailed my entire morning and frankly, all future instances of where I need to reauthenticate my credentials.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">All I could think of after this stupid ordeal, was how shit like this became a necessity on account of one or a few isolated incidents of some dumbasses within the company that probably fell for a phish or continuously have failed our periodic security checks.\u00a0 No security protocols are as secure as the intelligence of the dumbest end user, and the prevailing thought in my mind is that I think that companies should be more zero tolerance when it comes to their employees failing security checks, and fire them on the spot for getting busted for being weak links in the fence.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">Now full disclosure, I have failed a phish test once, on account of a moment of weakness where the company clearly managed to pique to my Asian love of name brands, claiming to have company apparel made by UnderArmour.\u00a0 Since then, I haven\u2019t bitten on a phish test, and am probably one of the more obnoxious end users who reports emails as possible phishing attempts on a regular basis, even when I\u2019m 99% sure it\u2019s legitimate.\u00a0 And sometimes, I\u2019ll use the report phish button as passive aggression, reporting things I just don\u2019t want to see from the company as phishing attempts, but the point remains despite my own early-tenure discretion, I\u2019ve been pretty exemplary when it comes to not getting phished.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">I feel like if companies were a little more draconian and zero tolerance when it comes to security protocols, the more stimulating of a workforce we\u2019d be in.\u00a0 It would help weed out all the olds who won\u2019t fucking retire and allow for the advancement of more competent employees, and it would naturally help filter out all of the unqualified goons who lied or affirmative action\u2019d their way into their roles.\u00a0<\/span><\/p>\n<p><span style=\"font-size: 16px;\">Companies shore up their security, and those who have been axed for their shortcomings have a chance to learn, grow and with the sheer amount of job fluctuation in the workforce, allows the entire marketplace to be stimulated and fresh, with people moving around at a rapid rate.<\/span><\/p>\n<p><span style=\"font-size: 16px;\">And then there would be lesser needs for companies like mine to do massive, reactionary, wide-sweeping IT initiatives like my company had to do, and there would be less wasted time on massive scales.\u00a0 Everyone wins!<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A little while ago, I was having a stressful morning at the office.\u00a0 My workload has been quite high over the last few weeks and the quality of the projects I\u2019m on have been leaving a lot to be desired as far as the competency of those I\u2019m required to collaborate with, and I spent &hellip; <a href=\"https:\/\/totfc.net\/?p=50739\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">I think companies should be more zero tolerance about security breaches<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[176,112,45,37,83,52,25,49],"class_list":["post-50739","post","type-post","status-publish","format-standard","hentry","category-brog","tag-murica","tag-crime","tag-fail","tag-job","tag-observations","tag-owned","tag-technology","tag-wtf"],"_links":{"self":[{"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/posts\/50739","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/totfc.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=50739"}],"version-history":[{"count":1,"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/posts\/50739\/revisions"}],"predecessor-version":[{"id":50741,"href":"https:\/\/totfc.net\/index.php?rest_route=\/wp\/v2\/posts\/50739\/revisions\/50741"}],"wp:attachment":[{"href":"https:\/\/totfc.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=50739"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/totfc.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=50739"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/totfc.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=50739"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}