Normally, 100%. The US government has strict opsec and cyber security procedures, so even if someone gets in a neglected door they better have covered their tracks well
But these are a bunch of complete newbies with no oversight. They’re not doing even the most basic compliance… They’re completely green, they don’t know what they don’t know yet. The oldest of them is a new grad, one is a high school grad. They’re also adversarial to the people who do the actual cyber security
I’m of the “no risk to small” mind set as well and I’d wager when they try to investigate, the people they must ask, will simply delay answering.
Perhaps not because of ideology either, I imagine the total increase in spillover work from sudden attack surface exposure must look wildly Sisyphean right now.
Normally, 100%. The US government has strict opsec and cyber security procedures, so even if someone gets in a neglected door they better have covered their tracks well
But these are a bunch of complete newbies with no oversight. They’re not doing even the most basic compliance… They’re completely green, they don’t know what they don’t know yet. The oldest of them is a new grad, one is a high school grad. They’re also adversarial to the people who do the actual cyber security
That being said, I wouldn’t take chances
I’m of the “no risk to small” mind set as well and I’d wager when they try to investigate, the people they must ask, will simply delay answering.
Perhaps not because of ideology either, I imagine the total increase in spillover work from sudden attack surface exposure must look wildly Sisyphean right now.