Sometimes It Just Doesn't Pay to be a Tester

  • Context: News 
  • Thread starter Thread starter jedishrfu
  • Start date Start date
Click For Summary
SUMMARY

The forum discussion centers on a significant incident involving penetration testers from Coalfire who were jailed after conducting a physical break-in at a county courthouse in Iowa. The test, intended to assess the vulnerability of county court records and law enforcement's response, was executed without proper communication between state and county officials. This lack of clarity led to confusion about the scope of the penetration test, resulting in legal repercussions for the testers. State officials have since apologized, highlighting the importance of clear communication in security assessments.

PREREQUISITES
  • Understanding of penetration testing methodologies
  • Familiarity with legal implications of security assessments
  • Knowledge of communication protocols in project management
  • Awareness of cybersecurity best practices
NEXT STEPS
  • Research "Best practices for conducting penetration tests" to avoid legal issues
  • Explore "Communication strategies for security assessments" to enhance clarity
  • Learn about "Legal frameworks governing penetration testing" to understand compliance
  • Investigate "Case studies on penetration testing failures" for lessons learned
USEFUL FOR

Cybersecurity professionals, penetration testers, project managers, and legal advisors involved in security assessments will benefit from this discussion.

Computer science news on Phys.org
LOL, oops!

They claimed to be conducting a penetration test to determine how vulnerable county court records were and to measure law enforcement's response to a break-in.

Unfortunately, the Iowa state court officials who ordered the test never told county officials about it—and no one evidently anticipated that a physical break-in would be part of the test. For now, the penetration testers remain in jail. In a statement issued yesterday, state officials apologized to Dallas County, citing confusion over just what Coalfire was going to test:
 
Don’t be the caught holding the bag. It reminds a bit of the airline stewardess who was worried about flying from the US to Mexico because she was a DACA person. Her bosses said it wouldn’t be a problem for her since she was working. Well ICE wouldn’t let her reenter the US.

Finally an outcry from politicians and supporters allowed her back in the country. She was in immigration limbo and her company made the mistake of sending her on an international flight because they were short on Stewardesses.

Editted to remove the short people joke.

https://www.nbcnews.com/news/latino/flight-attendant-daca-gets-airline-s-ok-fly-mexico-then-n986351
 
Last edited:
jedishrfu said:
...her company made the mistake of sending her on an international flight because they were short people.
:doh:
 
  • Like
Likes   Reactions: jedishrfu
Yes and oops another reason not to use a tablet for typing.
 
On the other hand: If pen-testing goes right, you get stories like this:

 

Similar threads

Dam Failures and Infrastructure Damage in a Changing Environment
  • · Replies 8 ·
Replies
8
Views
4K
News Who Is to Blame When a Child Enters a Gorilla Exhibit?
  • · Replies 2 ·
Replies
2
Views
2K
News Does 'pack journalism' shape the science news we read?
  • · Replies 15 ·
Replies
15
Views
3K
Fighting for Financial Relief: Surviving COVID Debt
  • · Replies 9 ·
Replies
9
Views
2K
Home Repair & Maintenance Advice for Newbie?
  • · Replies 11 ·
Replies
11
Views
4K
News Apple Caught Price-Fixing E-Books.
  • · Replies 6 ·
Replies
6
Views
3K
New CRISPR-based tool for find-and-replace editing of DNA
  • · Replies 2 ·
Replies
2
Views
5K
News Stop "Fox News North" - Avaaz.org 21M Global Campaign Network
  • · Replies 6 ·
Replies
6
Views
4K
Three new books to read about expertise vs. democracy
  • · Replies 4 ·
Replies
4
Views
3K
Graduate Search for CPT violation with protons/antiprotons using quantum logic
  • · Replies 1 ·
Replies
1
Views
3K