/ Print this Educational Info (PDF)
why Passwords are insecure and...
Did you know that it is becoming a fairly popular "sport" to video tape colleagues passwords with a cell phone?
We didn't want to motivate you to commit fraud - therefore we have provided a video for your entertainment:
Can you tell, what password the lady is typing?
If not - playback in slow motion will help!
Click on the image to see the
2007 Copyright Bromba GmbH
has Access to your DATA!!!
far most companies are using insecure passwords to
protect access to PC's or User Profiles...
the French Bank, Societe Generale, lost 7.2 Billion (Yes
- Billion with a "B" due to poor IT security.
A trader stole passwords from his coworkers and logged
on with their user ID's to conduct trades in their
names. A special committee at the French Bank has recommended the bank should immediately introduce stronger security systems, including biometric authentication, to prevent a recurrence.
Source - SAP Info Article
white-collar crime is the fastest growing crime and co-workers and
disgruntled employees have many motivations to cause
damages or increase their wealth.
The first thing they do before taking any illegal action
is to get access to another
colleague’s user profile for extended access - as
demonstrated at the French Bank - so
that they can blame another person if the fraud is
detected. Computer have been
in use since 1963 and so have passwords. Everything has
changed on the computer since 1963 - except the
outdated, insecure way, we are attempting to protect the
access to it!
our "Fishing for Password" document and learn, how
easy it is to get a hold of anybodies' SAP User
password and profile with extended authorizations (pdf).
Ways to get Passwords to any SAP User Profile:
of all passwords are written down
of all users share passwords frequently
crackers crack 80% in 30 seconds
are not encrypted between computer and SAP system
camera technologies - build into cell phones - can
tape passwords anytime
The California State University, Fullerton has researched 20 ways to get somebody else's password. Paul
Sheldon Foote, Ph.D., Professor of Accounting at the
University is leading the research project and has been
featured in an SAP TV movie about Sarbanes-Oxley and
Pete Gunn in a movie about bioLock at NASA (Link
Paul Sheldon Foote
Professor of Accounting, California
Director Safety and Security, Florida Space
Paul Sheldon Foote about Passwords:
"Pete" Gunn about Passwords:
passwords on a person's desk, telephoning to ask for a
password, packet sniffing, phishing, spoofed
(fraudulent) websites, phone phishing, pharming, and
vishing are only some of the successful techniques for
password fraud. The end of an era of corporate
contributory negligence will arrive when corporate
leaders accept the responsibility of implementing
multiple biometric authentication protocols."
the moment and go forward with biometric
technology. That is the way of the future, because
current systems where you have to develop a pin or
a password - that is too expensive and too cumbersome
and it is a major weak spot in the security
the Fishing for Password document to learn how dangerous passwords really are
other security comments from Pete Gunn, Paul Foote
and other industry experts in a 2 minute movie
us to educate your team further:
contact us for any questions and to schedule a personalized, educational
demonstration of our biometric identity management
for your team. bioLock offers a 5 Level Protection on
the data level - which is far more secure than
protecting an SAP User Profile with an insecure
us: Intl. +1-813-283-0070, Toll Free 1-877-bioLock
this information as PDF and share it with your
compliance, security and business teams (pdf)
© realtime North America Inc., Tampa/Florida. All Rights Reserved.
| || |
May. 15-18, 2011 (link)
|Visit us with our partner, Linx/AS Booth # 2349
USF Guest Lecture
April. 20, University of South Florida (link)
| realtime gives guest lecture about data protection and fraud prevention
ASUG Arizona Chapter Meeting
Feb. 17 at ITT Technical Institute (link)
|Data Protection and Fraud Prevention for SAP presented by realtime
Tampa ASUG Chapter Meeting
Dec. 8 at Wyndham Westshore (link)
|Keynote: Granular Data Protection presented by realtime
Nov. 7-10, Sun City (link)
ESS terminal with bioLock technology to South Africa
Biometric Consortium Conference 2010
Sep. 21-23 (link)
|Visit us with our partner Zvetco at Booth 314
May. 16-19, 2010 (link)
|Visit us with our partner, Dolphin Booth # 2815
Dolphin at Admin/
in Orlando (link)
|Visit realtime's partner Dolphin at the Dolphin Swan Hotel in Orlando - Booth 610
SAP Admin 2010:
Must see Security Presentation (link)
What is Biometric Authentication -
and How Can it Enhance your Current SAP Security Strategy?
Dolphin at GRC/Finance/
HR 2010 in Orlando (link)
|Visit realtime's partner Dolphin at the Dolphin Swan Hotel in Orlando - Booth 545
NBC/Channel 8 News:
Crime Tracker (link)
|News Anchor Krista Klaus visits realtime to discuss the danger of using passwords