Many organizations encounter a common problem in their approach to intranet security: They treat intranets as an internal tool that is hidden deep in the corporate network and is somehow immune from external attacks. This is far from the truth, however. An intranet is basically a Web application exposed to a hostile environment in the same way as the corporate website is, and therefore is vulnerable to the same scope of threats. The fact that it is intended for employees and trusted parties does not guarantee against hacker attacks, viruses, and spam. Failing to introduce a dedicated intranet security policy entails ...