You can't secure what you don't acknowledge.SM

Thursday, February 21, 2013

Yet another reason to get more in tune w/mobile & the cloud

Here's a good post from Elcomsoft's Vladimir Katalov that underscores the dangers of many things I've written and spoken about in recent years:
  1. Cloud security - especially as it relates to mobile apps (and in the case of this piece, iCloud) 
  2. Mobile control - BYOD, MDM and all those buzzwords sound nice but what exactly are you doing to ensure the business information that's being carelessly handled by your employees is kept in check? What's going to happen when it's exposed via such backdoors? 
  3. Legal documents - you can have all the privacy laws, policies, and end user agreements in the world but, at the end of the day, they're basically worthless. If the imperial government wants something, especially control like I talked about here, they're going to get it.
It's time to wake up and take some action.

Monday, February 18, 2013

Self-delusion + infosec= foolishness

I thought this quote from Ronald Reagan was quite fitting for President's Day:

"If history teaches anything, it teaches that self-delusion in the face of unpleasant facts is folly."