Tag Archives: breach

Is Encryption Evil or Just Not Worth It?

– This is a strange question for an InfoSec professional to pose, don’t you think? But it’s not so far-fetched as it may seem. Take, for example, the common assertion that most cyberattacks are at the application layer level. Whenever this is the case, then hijacked customer accounts, say, allow…

It’s the Culture … and Dead Canaries

– It appears that Volkswagen’s internal auditors “… found no evidence to suggest that members of the executive board or supervisory board were involved in the diesel fraud …” according to an article “VW Says ‘Culture’ Flaw Led To Crisis” by William Boston, Hendrik Varnholt…

Beating Around the Proverbial Cybersecurity Bush

– If I’ve said it once, I’ve said it a thousand times … until we put real teeth into cybersecurity enforcement and insist upon serious personal legal consequences for those at the top, we won’t see improvement. We’ve beaten around the bush for far too long. How many more breaches,…

Security in the Dark

– I attended a roundtable recently at which someone mentioned that, in their experience, those familiar contractual requirements requesting third-party service providers to tell their customers about security breaches within a short time frame (within three  hours, say) are often not conveyed to…

US Drones Hack: It’s The Same Old Story

– CNN reports that Iraqi insurgents were able to hack and view live feeds from US Spy Drones. The vulnerability was a non-technical one. The article summarized the issue as thus: The official said that many of the UAV feeds need to be sent out live to numerous people at one time, and encryption was…