I’ve had some hard time coming up with this post. I had the great opportunity to travel quite a bit lately – specifically to Berlin where basically EVERYBODY in security was at ph-neutral (have I thanked FX yet? I think so, but anyway – great con/party!). It all started in Berlin when I realized what [...]
Posts Tagged ‘predictions’
Being in the middle (or: things we didn’t manage to learn in a decade)
Things that we should be fixing in security.
Cyber[FUD]Fare – repost from fudsec.com
As promised – here is the “official” cross-post from my guest appearance on fudsec.com. Enjoy! I’ve been intravenously fed with FUD for as long as I’ve been in the business. The main strategy for understanding that you are facing FUD is to realize that there is a financial motivation behind the FUD-spreading entity. This has [...]
ExoticLiability podcast interview
OK, so a quick shameless plug for me and a couple of good friends at EL: I had the pleasure of throwing it all out with the ExoticLiability crew over the weekend, which ended up in a pretty cool podcast. Check it out at www.exoticliability.com (episode 51). May not be completely safe for listening to at [...]
The China/Google thing, accountants and other miscreants
Aha! Can’t believe I managed to avoid the unbelievable hype flood that swept across the interwebs in the last month. And to think that the last post (long overdue, I know… had REALLY good reasons for not being able to post anything) was somewhat oracleish in predicting that this would be the focus of this [...]
CyberCrime, CyberWarfare, and 2010
I’ll spare you the “2009 security in review” which you can read just about anywhere else you go now. I’ll also avoid the “what to expect in security in 2010″ because everyone would just reiterate the same stuff they saw coming to life in 2009… What I would do is give a quick preview on [...]
Mapping and Security Research
From the “We should have trademarked this” department: McAfee came out with their “Mapping the Mal Web“[PDF] report and are proving that innovation is best left for the smaller players to meddle with, only to be used later by the big guys. Not that there is anything revolutionary about the report – it’s the same [...]
AHA! A blast from the past…
I just ran across this great blog post from Lori MacVittie at Web2.0 Journal. Can’t say exactly why it sparked my interest, but after reading it I realized this may be Freudian… The proposed Anonymous Human Authentication (AHA – great acronym Lori!) proposed in it closely resembles a technology we worked on back in the days [...]
DefCon 17 talk video available!
DefCon 17 talk video of my talk
Clouds, and the winds that blows them away…
You must have seen this coming – I was holding off from discussing cloud security for quite some time for a few good reasons, but now it’s time to take a look at where are we (or more correctly – are we there yet?). First things first – the main reason for abstaining from the [...]