Conficker is just the press hype-driven tip of the botnet iceberg.
(Gartner First Take on Conficker should be here.)
Entries from March 2009
Twelve Word Tuesday: Confounding Conficker
March 31st, 2009 · 2 Comments
Tags: Uncategorized
The Xenophobia Threat: Beware “Them”
March 30th, 2009 · No Comments
The Telegraph reports that UK intelligence officials have warned that BT’s new 21CN network is vulnerable to exploit by the Chinese government since the network uses Huawei telecoms equipment. Huawei is China’s largest telecoms company and was recently “discouraged” by the US from acquiring the TippingPoint intrusion prevention technology owned by 3Com. There have been [...]
Tags: Uncategorized
You Can Either Twitter About the Rising Waters, or Keep Piling Up the Sandbags
March 27th, 2009 · 1 Comment
Unlike others, I did not postpone travel to Texas this week. After seeing TV pictures of floods in North Dakota, blizzards in Colorado and tornadoes in Louisiana, hard to complain about my bumpy and delayed flights
Anyway, after a bit of exciting rerouting through Oklahoma City, I did get to Texas and met with security folks at [...]
Tags: Uncategorized
It Doesn’t Matter How Many Raindrops There Are, It is All About How Wet You Get
March 26th, 2009 · 5 Comments
Greg Young of Gartner posted here about the sorry state of security - but is that really the case?
Before there was postal mail, all fraud and scams were done in person. Of course, there were a lot fewer transactions because everyone had to be near each other to transact. Once postal mail came along, mail scams [...]
Tags: Uncategorized
Twelve Word Tuesday: Software Is More Like a Tornado Than a Volcano.
March 24th, 2009 · No Comments
If only vulnerable software would belch smoke and rumble before it exploded.
Tags: Uncategorized
Who Are You? Who, Who, Who – Really?
March 23rd, 2009 · No Comments
Who are you?
Who, who, who, who?
Who are you?
Who, who, who, who?
Who are you?
Who, who, who, who?
Who are you?
Who, who, who, who?
(refrain from “Who Are You?” by The Who)
Almost 16 years ago “The New Yorker” published the now iconic “On The Internet, No One Knows You’re a Dog” cartoon, which fueled security presentations for years and [...]
Tags: Uncategorized
I Can State With Confidence You Won’t Need An Operation For This
March 20th, 2009 · No Comments
I love to watch television but there just doesn’t seem to be all that much on that’s worth watching anymore. One exception is the TV show “House” – that is on our Tivo Season Pass list, along with a few other shows. Now, in “House” the patient has baffling symptoms and for the first 50 [...]
Tags: Uncategorized
Twelve Word Tuesday: Security In Depth Requires Kevlar Footgear for Many Companies
March 17th, 2009 · No Comments
AIG was obviously lacking ‘Beware Bonusing While Being Bailed Out” awareness posters.
Tags: Uncategorized
Uh Oh – Here Comes Google Voice
March 16th, 2009 · 2 Comments
Gartner recently published a First Take about Google’s preview of Google Voice, which is basically a Google-provided phone number that will consolidate all of a user’s phone and text messaging into a single message mailbox. It will also provide voice to text transcription of voice mails and a bunch of other services. Google is currently [...]
Tags: Uncategorized
Prioritizing PCI Requirements
March 12th, 2009 · 2 Comments
The Payment Card Industry Security Standards Council recently published some guidelines for a sequential approach towards meeting the PCI Data Security Standard requirements. Essentially, they mapped the DSS requirements across six major milestones. This doesn’t mean they are opening the door towards making some requirements optional or even less important than others – but it is [...]
Tags: Uncategorized