tag:blogger.com,1999:blog-20011960.post5259812759869128492..comments2024-01-15T00:25:02.006-08:00Comments on HolisticInfoSecâ„¢: Online finance flaw: Chase away flawed broker browser codeRuss McReehttp://www.blogger.com/profile/05647342839278416757noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-20011960.post-8794333232815429092009-02-19T13:36:00.000-08:002009-02-19T13:36:00.000-08:00Raf,Nationalization and financial woes can't excus...Raf,<BR/>Nationalization and financial woes can't excuse this one. I'm pretty sure their broken broker browser code is older than you. ;-) Thus, this problem predates their current distress as an avoidable shortcoming.Russ McReehttps://www.blogger.com/profile/05647342839278416757noreply@blogger.comtag:blogger.com,1999:blog-20011960.post-57533559395972414112009-02-19T11:51:00.000-08:002009-02-19T11:51:00.000-08:00@Russ-- For once I'm going to play Devil's advoca...@Russ--<BR/><BR/> For once I'm going to play Devil's advocate...<BR/><BR/>For a bank that's about to be nationalized, and in severe financial trouble (as they all are these days) do they really care? Wouldn't we assume the have "bigger problems"?Rafal Loshttps://www.blogger.com/profile/18106347834259269413noreply@blogger.comtag:blogger.com,1999:blog-20011960.post-45145920029166790942009-02-16T19:54:00.000-08:002009-02-16T19:54:00.000-08:00Great work again, Russ. The only way to begin to f...Great work again, Russ. The only way to begin to find and fix these security holes is to educate the many stakeholders, in responsible and reasonable fashion, and hold the info fiduciaries accountable for their security practices.<BR/><BR/>Thanks for the kind mention. I have been reading some of your earlier writing, and would like to help address the SOX question. 'Yes, Russ, bypass of infosec controls IS a SOX problem.'Anonymousnoreply@blogger.com