Monday, November 30, 2015

Some Conseqences of An Inadequate Information Security Policy

Hey everyone - Information breaches are common nowadays.  It almost seems like we have grown immune to them.  They can happen for a variety of different reasons and can happen on purpose or inadvertently.  I want to talk about one that I stumbled across while pursuing through news articles, because I think it raises some interesting points.

Monday, November 23, 2015

On The "First" Linux Ransomware

Hey everyone - This is a little dated at this point, but I thought it would be interesting to talk about the first piece of Linux ransomware to make news.  Ransomware is somewhat old news on Windows, but this is the first time I have heard about it on Linux.  I suppose there is a first time for everything.  Let's discuss it.

Monday, November 16, 2015

Domain Fronting and You

Hey everyone - I was reading some articles, and I came across a paper on something called Domain Fronting.  I wanted to talk a little bit about it because it seems like an interesting way to hide in plain sight.

Monday, November 9, 2015

On The Security of the Linux Kernel

Hey everyone - This week, I wanted to talk a little bit about an article I recently read in the Washington Post about the inherent "insecurity" of the Linux kernel due to the attitude of its creator, Linus Torvalds.  I think the article is worth a read because I believe it touches on an interesting concept that I believe is one of the underpinnings of information security: the security of a system should not be determined by each of its individual parts, but rather, the security of those parts as a whole.

Monday, November 2, 2015

Credit Downgrade for Lack of Cyber Security?

Hey everyone.  I am a big proponent of consequences for those that shirk their responsibility to protect data that they collect.  It looks like S&P wants to hold banks accountable for loose information security practices.  Let's talk about it.