this post was submitted on 01 Jun 2024
95 points (97.0% liked)

Cybersecurity

5652 readers
269 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 1 year ago
MODERATORS
 

Cybersecurity and Infrastructure Security Agency urges affected users to update ASAP.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 5 months ago

Exactly. If you run a service, the bare minimum due diligence is to install available updates in a timely manner. Imo, it's criminal negligence if a service gets hacked due to an unpatched system.

Most likely, this isn't being done because the IT dept isn't given enough time to actually maintain systems, so whoever makes that decision should face criminal charges. And orgs like the NSA should be auditing this kind of thing and issuing fines, not spying on US citizens.