Quantum Gel
Both apply and do not apply to affected areas.
2852 publicly visible posts • joined 16 Jan 2012
Unfortunately it isn't. And it is predicated on a massive misunderstanding around how encrypted services on the internet works.
If Alice sends an encrypted message to Bob, then the only point the message should be unencrypted when it's displayed on screen.
If it's ok to scan for security purposes, that sounds pretty benign doesn't it?
Oh look! Port 23 is open. Surely there's no harm in looking at the banner? Just to make sure that particular implementation of FTP hasn't got any known security vulnerabilities.
Those login attempts? We were just scanning for common known passwords, just to check that your machine is really secure.
Those downloads? We're just collecting document meta data. No human has actually read your invoices, statements and holiday photos. Though we strongly discourage using $RIVALBANK$'s services. They aren't nearly as secure as we are.
Except it wasn't an unauthorised access. The system was doing exactly what it was designed to do.
What they have there is an unauthorised disclosure. They had a duty of care regarding that data and they left it on a window sill where anyone could take a gander.