I Am Security

  • Security Awareness and Security Context – Aitel and Krypt3ia are both wrong?

    by

    iamit
    in

    It was pretty obvious that after an Information Security persona such as Dave Aitel has posted his “Why you shouldn’t train employees for security awareness” article, there would be a lot of flak from the industry. A lot has been said about training employees to be somewhat more savvy users when dealing with corporate equipment…

  • This one time, at Defcon… (a blast from the past)

    by

    iamit
    in

    Wow, there’s a blog here… Lucky for me there are other people who write new content that somehow relates to this blog so I have a chance to point to them and say “cool stuff, look there!”. My good friend Itzik Kotler has just written a blog post about bypassing DLP systems using some of…

  • SexyDefense comes to Vegas!

    by

    iamit
    in

    One of the best things that probably happened to the research on SexyDefense is that it has been accepted to BlackHat Briefings in Las Vegas! It is truly one of the highest indicators for me that we are on the right track in making some change in the defensive paradigm, especially in light of the…

  • So you thought you were protected: How hackers can break into your business

    by

    iamit
    in

    This is a translation of the original article published in Calcalist on May 20th 2012.   A group of professional hackers, employed by the most sensitive organizations to detect security breaches, are showing how to gain access to critical information, or take down the power for a whole city – and what is needed in…

  • Sexy Defense

    by

    iamit
    in ,

    So, Source Boston proved to be a great venue for the inauguration of the Sexy Defense paper and talk that I was working on recently. Had a great time both developing the concepts, as well as discussing them before, on stage, and especially after the talk. I really was amazed by the great feedback that people had…