New York Times gets Pwned, Responds all New School

by adam on January 31, 2013

So there’s a New York Times front page story on how “Hackers in China Attacked The Times for Last 4 Months.” I just listened to the NPR story with Nicole Perlroth, who closed out saying: “Of course, no company wants (…)

Read the rest of this entry »

Breach Analysis: Data Source biases

by adam on January 30, 2013

Bob Rudis has an fascinating and important post “Once More Into The [PRC Aggregated] Breaches.” In it, he delves into the various data sources that the Privacy Rights Clearinghouse is tracking. In doing so, he makes a strong case that (…)

Read the rest of this entry »

“Cyber” Insurance and an Opportunity

by adam on January 22, 2013

There’s a fascinating article on PropertyCasualty360 “ As Cyber Coverage Soars, Opportunity Clicks” (thanks to Jake Kouns and Chris Walsh for the pointer). I don’t have a huge amount to add, but wanted to draw attention to some excerpts that (…)

Read the rest of this entry »

“The Phoenix Project” may be uncomfortable

by adam on January 16, 2013

The Phoenix Project as an important new novel, and it’s worth reading if you work in technology. As I read it, I was awfully uncomfortable with one of the characters, John. John is the information security officer in the company, (…)

Read the rest of this entry »

On Disclosure of Intrusion Events in a Cyberwar

by adam on January 12, 2013

[This guest article is by thegruq. I’ve taken the liberty of HTML-ifying it from his original, http://pastie.org/5673568.] On Disclosure of Intrusion Events in a Cyberwar The Nation State’s guide to STFU In a cyberwar (such as the ongoing events on (…)

Read the rest of this entry »

The High Price of the Silence of Cyberwar

by adam on January 9, 2013

A little ways back, I was arguing [discussing cyberwar] with thegrugq, who said “[Cyberwar] by it’s very nature is defined by acts of espionage, where all sides are motivated to keep incidents secret.” I don’t agree that all sides are (…)

Read the rest of this entry »

New School Thinking at the European Union

by adam on January 3, 2013

I was pretty excited to see this: An EU official said the aim of the report was to get companies to be more open about cyber attacks and help them fend off such disruption. “We want to change the culture (…)

Read the rest of this entry »