Category Archives: InfoSec Economics

Are Ransom Payments Supporting Terrorists?

– Organizations, particularly those that recognize that they don’t have essential security and data recovery measures in place, have taken out cyber insurance, which they are regularly using to pay off ransomware attackers. I find it curious that these insurance companies seem to be willing to pay…

Protecting In-Vehicle, Vehicle-to-Vehicle, and Ex-Vehicle Systems

– On May 5, 2017, I gave a presentation with the title “Cybersecurity in the Age of Autonomous Vehicles, Intelligent Traffic Controls and Pervasive Transportation Networks,” for which I was honored with the “Best Applications Track Paper” award, at the IEEE Long Island Systems, Applications…

At Last! A Reporter Who Understands Cybersecurity

– We are bombarded with TV news, newspaper articles, blogs, comments, and the like, about cybersecurity. Most reporters seem to be in awe of the attackers (sophisticated criminals and nation states, for the most part) and sympathetic to the victims. After all, so it goes, the attackers are so clever…

Outsourcing and Offshoring – Now Insourcing and Reshoring

– There have been hints about the recent movement towards “insourcing” and “reshoring,” along with the usual confusion regarding terms used. In the December 2012 issue of The Atlantic magazine (pages 45-52), there was a noteworthy article by Charles Fishman called “The Insourcing Boom,”…

Will Cloud Security Drive You Insane?

– First, the transparency … I have known Jim Reavis, co-founder of the Cloud Security Alliance (CSA), for a dozen years or so. He is a true visionary. He met with me before creating the CSA and asked me what I thought. I told him to go for it. He did and has had remarkable success […] …