A client confessed to me yesterday that one of their key login passwords is “password.” I was dumbfounded. I sometimes forget, because I’ve been talking about security with clients for so long, that the most basic password management remains a widespread problem. “I don’t have anything very important”, “I’m not interesting”, or “I don’t have […]
Start with an ill-defined problem or hope. Don’t bother spending time clearly outlining the issues you are trying to address. Surely it’s enough to say we have a problem.
Better yet, let your vendor define the problem for you in terms that fit their solution.
Everyone is buzzing this week about cameras and fridges sending spam. If you’re just hearing this now, you can catch up the sensational version or find more technical details here. Should you freak out? No. However, it is concerning. It shows that manufacturers and users haven’t learned very much. The most likely cause of this […]
I was reading an article today that put some numbers to a problem I’ve been aware of for some time: inappropriate data transfers to personal equipment. While the basic story was not news to me (or many other security professionals I’m sure), it was interesting to see some numbers put to the scale of the […]