[citation][nom]iNiNe5[/nom]"Posing as the executives, the hackers then sent out emails to technical staff from the departments and tricked them into releasing key passwords...."well rule #1 is to never give out passwords when asked.... all other rules are secondary. an executive should never email you asking for a PW anyways if they are abiding by security regulations... unless of course there weren't any rules.[/citation]
Go to any IT discussion forum, and you'll undoubtedly hear numerous stories of the dreaded: "I'm the boss, you'll give me complete admin rights and all server passwords or you're fired". You see, these high-level managers think they're smarter than they are, and that, being top-dog, they must have access to anything in the company, because it can't be trusted in the hands of those IT dimwits. In fact, the emails sent by the hackers were probably lost in the sea of emails from actual management, asking inane things like "why did the email server delete i_love_you.txt.exe from my email? I needed that attachment" and "Why didn't you send out an email alerting people to the fact that the email servers have been down all morning?". You know, typical upper-management stuff.