Posted July 15, 2013

I'm not sure how much weight this carries anymore, as some of the recent DoD hacks (e.g. McKinnon) were due to default passwords being used on key pieces of equipment. Now, there are probably some very skilled individuals out there that can defeat very good security if they put their minds to it, but the vast, vast majority of breaches are due to security failings leaving the systems vulnerable to fairly basic approaches (SQL injection, default passwords, unpatched vulnerabilities, and good old social engineering).