|One problem - it isn't real...|
The problem of people misquoting historical figures is so huge that John Oliver recently launched his own website where I "learned" that famous physicist Albert Einstein weighed in on genital herpes.
|Thanks HBO. I had no idea until now Einstein cared so much about STDs!|
First off, a Twitter account with 741,000+ followers was distributing garbage. If an attacker took it over and posted a random link (say to an exploit kit), how many people would click on the link? My guess is the number would be at least as many people as retweeted the fake picture (so minimum 1400).
The second infosec hook has to do with half-truths. At Rendition Infosec, we regularly work with clients who have read some half truth on the Internet but take it as gospel. One of my personal favorites is "we use SSL, so our web applications are safe." Wow. SSL only prevents outsiders from snooping on your web traffic. No other protections are offered by SSL. SSL definitely doesn't protect you from XSS, SQLi, or CSRF, contrary to popular belief in some circles. Another favorite half truth is that if you deploy a WAF, you don't need to remediate issues in your vulnerable web applications. This is a really bad idea for a whole number of reasons, but it's a truth that some clients have clung to with nearly religious zeal.
The moral of the story? I'll defer back to Lincoln for this - he sums it up as well as I ever could.