Information Security – Always Behind the Technology Curve

Information Security – Always Behind the Technology Curve

In today’s hyper competitive business environment, it is no longer sufficient to compete on price and quality alone.  Just as InfoSec workers can be thought of as being in a war with those that would use unauthorized or fraudulent access to data and systems to enrich themselves or their employers,...

Removable Storage and the Temporal Value of Data

There are a lot of ways for determined insiders to exfiltrate appropriated documents and data but by far the preferred method is good old tried and true removable media.  Edward Snowden was a SysAdmin, so in spite of a general policy against USB flash drives, he was completely comfortable making...

Security Intelligence and the Rise of the Unknown Vulnerability

We spend a great deal of time talking about how to secure the Enterprise Compute and Communication environment. We talk about insider and external threats, malware, applications and risks. We talk about the importance of prevention and the necessity of real time detection. We talk about collecting and analyzing network,...

Security Intelligence – Think Outside the Logs

We often consider our security posture and architecture with an eye to the threat environment. We look outside, and try to determine what we are defending against. Even in the case of insider threats, we are often trying to develop the defenses in terms of the attack vectors, vulnerabilities and...

Edward Snowden – The Ultimate Insider Threat

Edward Snowden is a IT contractor, a SysAdmin employed by Booz Allen to provide Systems services to the US Intelligence Agencies. In this sense, he is just a face in the crowd, part of a small army of private-sector contractors helping the US government run its day-to-day operations. But as...

(Security) Intelligence is Power

In the last year or so, we’ve seen significant growth in attacks on web servers, as opposed to the more traditional attacks on individual users. The instigators of these attacks use the higher levels of available bandwidth and processor power to unleash particularly effective DDoS attacks against banks and other...

Security Intelligence – Words with Actual Meaning

It won’t come as breaking news I’m sure, but technology marketing professionals have an insatiable appetite for hot buzzwords and trendy terms. It’s easy to understand, I suppose - when a particular concept starts breaking out of tech forums and into mainstream editorial, it’s a tremendous opportunity to capitalize on...

State of Information Security – What we don’t know is KILLING us

For those interested in Information Security, there is a LOT of information out there. In addition to the shows, conferences and seminars, there are vendor briefings and webinars, analyst White Papers, industry studies like those from Verizon and Mandiant, websites like Ars Technica and Dark Reading, dozens of blogs by...

Candid Camera, Threats from the inside and Beyond

Those of us of a certain age can remember very well when the first webcam went online. It was pointed at the coffee pot at a computer science lab within Cambridge University, and provided a simple method for employees to determine if the pot was empty before walking down the...

Upgrade Your Information Security

Upgrades or lack there of, a major concern for information security operations Systems and network administration is an endless balancing act.  On the one hand, availability, stability and performance are paramount concerns, while adding functionality and security are less well understood demands outside the IT organization.  Everyone has felt the...

Inside Out

Insider attacks aren’t new. The very first sysadmin probably didn’t go rogue, but it wasn’t very long after him that the first one did. The reason these are among the most problematic attacks are obvious - these are the most trusted users, who, in order to be able to do...

Technological Problems, Technological Solutions

We’ve seen it countless times over the years. Someone will speak up in a meeting, saying something to the effect of “not all problems have technological solutions - just throwing more technology at it may not be the best option”. They say it because it’s self-evidently true, but also because...