You can't secure what you don't acknowledge.SM

Friday, February 4, 2011

I'm quoted in today's Wall Street Journal, p. B9

Joe Mullich, a writer for the @WSJ, has put together some great stories on cybercrime and data breaches in Marketplace (section B) today. My contribution is on smartphone security and it's located on page B9 at the end of the piece titled "A Surge of Smishes - Workers' laxness opens door to smartphone data theft".

Also check out the piece on TigerText (the secret texting app) on page B11. Cool stuff.

Thursday, February 3, 2011

Check out tomorrow's Wall Street Journal @wsj

I'm being featured in a piece on #smartphones and mobile security in tomorrow's Wall Street Journal. More to come soon...

Don't just do something, sit there.

Seriously, it's time to kill the #KillSwitch bill that I've written about recently. It's dangerous, it's not what America is about and it's only going to make things worse for our country, our economy and our personal liberty.

Here's some more details along what you can do about it today:

Monday, January 31, 2011

The Egyptian uprising tie-in with the U.S. Internet kill switch

The people rioting in Egypt against their oppressive government and the subsequent blocking of the Internet is an interesting issue that has a global reach. Foreign policy aside, have you stopped to think about the ramifications of the cybersecurity "kill switch" bills that our measly politicians are trying to force upon us?

As I wrote previously, the proposed Rockefeller-Snowe Cybersecurity Act of 2009 (Senate Bill 773) and Lieberman-Collins-Carper Protecting Cyberspace as a National Asset Act of 2010 (Senate Bill 3480) provide undeterred powers to the government to effectively shutdown our economy as we know it. Would the president use this power during a cyberattack? Presumably. Would the president use it during an uprising like what's going on in Egypt? It wouldn't surprise me.

But, you say, all of this is happening in Egypt...this is America - we'd never reach that point! That's a shortsighted and dangerous mindset. Just look at all the nonsense the Social Democrat Party have shoved on us the in the past two years alone...evidence enough to rational people that anything's possible with a runaway government. Our government "leaders" don't want to be questioned, they don't want to explain their actions and they certainly don't like it when people speak out against them. [The whole free speech thing cracks me up when you think about what the old-school liberals of the 1960s demanded, but that's another story.]

As Senator Susan Collins recently said "unlike in Egypt, where the government was using its powers to quell dissent by shutting down the internet, it would not." Oh, okay, we understand and believe you Senator Collins. The government has never put legislation in place for one purpose and ended up abusing it for other means down the road. We're good. Here are some more details on this recent news:
As Egypt goes offline US gets internet 'kill switch' bill ready (the graph showing Internet traffic to and from Egypt last week is really interesting)

...according to Wired Magazine, it looks like the Lieberman-Collins-Carper cybersecurity bill is set to be reintroduced into a Senate committee any day now.

So, it's scary to many what the Egyptian government did/is doing to it's people and the U.S. is now wanting to put the same draconian powers in place? But you know it'll be different Socialism. It's failed elsewhere for centuries, but big, strong America can make it work for the greater good of the people.

Folks: good, bad or ugly, our politicians are going to get their way. Way too many voters are concerned about what's happening on Facebook, NCAA basketball and American Idol for us to be able to truly hold these people's feet to the fire.

What can you do...? Interesting times indeed.

It's hard being human

Cavett Robert once said something about character that resonates within information security - especially regarding ongoing management and leadership. He said:

"Character is the ability to carry out a good resolution long after the excitement of the moment has passed."

When I saw this I was reminded of how pumped you can get when attending a show like RSA or CSI or how neat certain vendor marketing spiels sound. Another is when an information security consultant or internal auditor produces a report that kindles the fire inside so you resolve that you're going to make things right this time around...but then the newness and the excitement wear off. We get busy and fall back into our old ways and like I wrote about we lose sight of what's important. The cycle continues.