Sponsor's Message

If you listen to Microsoft's claims then keeping your Windows-based systems free of these threats merely involves regularly updating so as to ensure that everything is patched to the latest revision -- simple eh?

And let's face it, no sensible IT manager would even remotely consider risking their company's fortunes and reputation on software that couldn't be relied on to be resilient to such dangers -- would they?

Well, if media reports are anything to go by, we either have a lot of IT managers who need firing or Microsoft's claims to offer a reasonably secure platforms are a bunch of lies. Or, perhaps both statements are true.

The latest email-borne (Update: oops, it's not email-borne at all, it's a port-based attack - mea culpa) worm for instance, has wreaked havoc on a surprisingly large number of substantial institutions right across the globe. Those hit include government departments, banks, travel agencies, offices of the EC, 19 stations of the British Coast Guard, financial organisations including Goldmans Sachs, Sampo, and goodness knows how many others.

Readers Say Got something to say about today's column, or want to see what others think?  Visit The Forums

What the hell's going on here?

If the IT Managers of all those organisations aren't busy beating the pavement looking for new jobs today then the board of directors or upper management ought to be offering shareholders some pretty damned good explanations.

As a customer of the Westpac Bank I have to admit that I'm deeply worried and disappointed that their Australian operations were hit by the Sasser worm.

Someone ought to be demanding to know why all their PCs aren't running with all the latest patches applied at all times.

Would this bank be equally unconcerned about leaving its vaults unlocked from time to time?

If we can't trust them to protect their own computer systems from attack, how on earth can we rely on them to keep our money and investments safe?

Unfortunately, I find myself bitching about the Westpac *again* and can't help feeling that surely they can't be the worst offenders. However, after their outrageously poor handling of the first NZ phishing scam a while back, I'm finding it really hard to dismiss this latest fiasco as being just a fluke.

Come on Westpac, wake up.

You really need to take your responsibilities towards security and protecting your customers funds far more seriously than you obviously do.

And, before you write to tell me not to worry and that customers will always be reimbursed for any losses, let me remind you that when you make-good any such losses, we all pay because it becomes simply another cost of doing business -- which is passed on to customers.

So what do readers think? Is Westpac earning itself a reputation for slackness in the area of IT/online security?

Do they need to go out and hire someone with a few clues in this area to help them out?

Sorry Westpac -- I'm quite happy with the service you provide me in respect to my day-to-day banking but I really think your IT/security management need a swift kick up the backside.

If you feel that this is a good thing and/or you hold a "geniune affection" for yours truly -- then you are welcome to gift me some money using the buttons provided. In gifting this money you accept that no goods, service or other consideration is offered, provided, accepted or anticipated in return. Just click on the button to gift whatever you can afford. NOTE: PayPal bills in US dollars so don't accidentally gift more than what you were intending :-)

Contacting Aardvark
I'm always happy to hear from readers, whether they're delivering brickbats, bouquets or news tip-offs. If you'd like to contact me directly, please this form. If you're happy for me to republish your comments then please be sure and select For Publication.

Other media organisations seeking more information or republication rights are also invited to contact me.

Just add a couple of lines of JavaScript to your pages and you can get a free summary of Aardvark's daily commentary -- automatically updated each and every week-day.

Aardvark also makes a summary of this daily column available via XML using the RSS format. More details can be found here.

Contact me if you decide to use either of these feeds and have any problems.

Linking Policy
Want to link to this site? Check out Aardvark's Linking Policy.

Did you tell someone else about Aardvark today? If not then do it now!