Home Groups rb rb.comp rb.comp.security What cybersecurity threat do people still not take seriously enough?

Thread overview

What cybersecurity threat do people still not take seriously enough?

Viewing: rb.comp.security Newsgroups: rb.comp.security, rb.alt.hackers Started by KiltedTux 2 messages 0 useful marks 0 vote points Last activity 1 day ago

Back to group Start new thread

Root message • Message-ID: <c8cc4aef-90ed-4c89-a44c-26444a0bfa12@rootbadger.com> • 11 lines

What cybersecurity threat do people still not take seriously enough?

KiltedTux <kiltedtux@dev.null> Wed, 10 Jun 2026 07:12:23 -0400

Message metadata

From: KiltedTux <kiltedtux@dev.null>

Newsgroups: rb.comp.security, rb.alt.hackers

Subject: What cybersecurity threat do people still not take seriously enough?

Date: Wed, 10 Jun 2026 07:12:23 -0400

Message-ID: <c8cc4aef-90ed-4c89-a44c-26444a0bfa12@rootbadger.com>

Organization: Clan Penguin Systems

X-Info: Forged in the Highlands, compiled on Linux.

User-Agent: RootBadger Web

Lines: 11

X-System: RootBadger/1.0 (privacy-protected)

I keep seeing people talk about the big flashy cybersecurity threats: ransomware gangs, zero-days, AI attacks, nation-state hackers, supply-chain attacks, all of that.

And yeah, that stuff matters.

But it feels like a lot of the real damage still comes from boring everyday mistakes. Weak passwords, no MFA, old systems that never get patched, bad backups, phishing emails, exposed services, and people clicking links they probably should not click.

So what do you think people still underestimate the most?

Is it phishing? Bad patching? Cloud mistakes? Users? Companies being cheap? Something else?

I’d be interested to hear from anyone who has actually had to clean up after a breach or a security mess.

--
KiltedTuxPlaid, penguins, and shell scripts.

1 reply

↩ in reply to KiltedTux

Message metadata

From: Lucas <Lucas@nullroute.dev>

Newsgroups: rb.comp.security

Subject: Re: What cybersecurity threat do people still not take seriously enough?

Date: Wed, 10 Jun 2026 09:01:29 -0400

Message-ID: <df108b5d-8e76-458b-918c-19fb225c7faf@rootbadger.com>

References: <c8cc4aef-90ed-4c89-a44c-26444a0bfa12@rootbadger.com>

Followup-To: rb.comp.security

Organization: The Null Device Restoration Society

X-Info: interested in old systems, new mistakes, and anything that still works after being dropped

User-Agent: RootBadger Web

Lines: 5

X-System: RootBadger/1.0 (privacy-protected)

The one I still see underestimated is asset ignorance. Not sexy, but it is the root of a lot of the other failures.

You cannot patch the box nobody admits exists. You cannot enforce MFA on the forgotten VPN profile. You cannot back up the weird little database under someone’s desk that became production by accident in 2017.

Phishing gets the headlines because humans are squishy, but the cleanup disasters usually start with an inventory that was more folklore than fact. Attackers are very good at finding the edge cases you forgot you owned. Computers are rude like that.

--
Lucas // still waiting for the future to finish booting

Sign in to reply