14 Jan 2017 9:16 pm
His incompetence will be well rewarded.The Website of Donald Trump's Cyber Security Advisor Is Insecure as Hell
On Thursday, Donald Trump’s transition team announced that Rudy Giuliani would be forming a cybersecurity team for the President-elect, citing the former New York City mayor’s 16 years of experience “providing security solutions in the private sector.”
In all those years, however, it appears that Giuliani never checked the defenses of his own company’s website, giulianisecurity.com, which is a bona fide security nightmare.
As detailed by Phobos Group founder Dan Tentler and others, the website for Giuliani Security & Safety is an all around disaster that runs on an ancient version of Joomla!, a free to use content management system (CMS).
In the almost four years since the version that Giuliani’s site uses was released, more than a dozen vulnerabilities have been documented in the CMS.
That, unfortunately, isn’t even the worst of it.
The site fails to follow a number of other basic best practices that would be obvious to the most casual student of cyber security.
http://www.politico.com/story/2017/01/t ... ity-233552