Security Consultant lists six most persistent security mistakes he’s seen during his many years of consulting. Most security professionals don’t check firmware or BIOS versions, for example, even though they easily could. Many of his fellow computer security professionals seem overly worried about the wrong threats. When planning a security defense, you need to address the most likely threats, he says. In most workplaces, users get the same old advice: Avoid visiting untrusted Web sites, and don’t open email attachments from people you don’t know.”]
Source: https://www.csoonline.com/article/2608207/6-things-security-pros-keep-getting-wrong.html