Originally Posted by JimFin
Yea eldawardo it is completely impossible, nobody where I work would chance going that route due to company policies.
I snipped your quote to point out two things.
1. NOTHING is EVER completely impossible. EVER.
2. Company Policies stop NOTHING. A malicious coworker could EASILY pop a keylogger or RAT onto your box, sniff your traffic, MITM your SSL connections, or even *look over your shoulder* and get your password.
Hell, most "IT Professionals" have it on a post-it note on the screen, under their keyboard or even *gasp* in a drawer.
You likely were owned by either:
So, the question is:
Pissed off any co workers lately?
Kept up to date with your patches? Including third party/browser/java/flash?
Shared any USB keys or borrowed any?
Browsed any dodgy sites?
Downloaded and ran any software, plugins, or "updates"?
Have decent AV? Is it up to date?
And so on...
P.S: Sorry if I come off as very abrasive/asshole-ish, but eventually one gets sick of ""No it couldnt be that Im a professional". The sheer number of IT "professionals" and security "professionals" I have seen get owned...