Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: breaches

The Security of Fools

– No, I’m NOT saying that security professionals are fools … far from it. But many of the folks whom they serve may well be overconfident in their judgments about security. Overconfidence in the face of undisputable evidence to the contrary is described in Daniel Kahneman’s article “The…

Do Security Professionals Create Security Breaches?

– “ … you’re either part of the solution or you’re part of the problem.” Eldridge Cleaver, 1968 The explanation for the 1000 point drop and bungee rebound in the Dow Jones on May 6, 2010 has been, and continues to be, the object of much scrutiny. Many explanations and combinations thereof…

Insider Threat – Not Knowing That You Don’t Know What You Don’t Know

– In my column “All the Way from RSA,” posted on April 5, 2010, I refer to the article “France Got Stolen HSBC Data” by Deborah Ball and David Gauthier-Villars in the Money and Investing section of The Wall Street Journal published on March 12, 2010. Not only does this appear to be a case of…

Security Testing’s Missing Link and the Revelation of Drone Images

– Why are so many computer and network applications breached? And in seemingly simple ways? A recent featured article appeared at the top of the first page of the December 17, 2009 edition of the Wall Street Journal – that dreaded space from which security professionals are tasked with avoiding…

“Infosec, You’re Doing a Heck of a Job!”

– … to paraphrase President George W. Bush’s praise of “Brownie,” a.k.a. FEMA director Michael D. Brown, just before the flooding of New Orleans and one of the most damaging, and least-well handled catastrophes in US history – see my chapter on “Responsibilities and Liabilities with…