No Tech Hacking
August 3rd, 2008
For those of you that have never had the pleasure of seeing Johnny Long speak in person should watch this Google Video of his No Tech Hacking presentation from DefCon 15. I also highly recommend his book, No Tech Hacking.
Cybercrime Groups Operate Like the Mafia
July 17th, 2008
Ars Technica has an article that points to a new report by the security vendor Finjan that explains how cybercrime groups have developed their organizations and tactics along the lines of traditional organized crime groups.
Cybercrime companies that work much like real-world companies are starting to appear and are steadily growing, thanks to the profits they turn. Forget individual hackers or groups of hackers with common goals. Hierarchical cybercrime organizations where each cybercriminal has his or her own role and reward system is what you and your company should be worried about. Targeted attacks against financial institutions, enterprises, and governmental agencies, coupled with excellent management of stolen data, makes these “businesses” highly successful, and makes any organization using the Internet vulnerable.
The full report is available here. Be aware they require that you fill out a survey to download the report.
Life After Death Powerpoint
July 16th, 2008
Not directly related to security, but provides tips for putting together your security awareness presentations. Besides it is hilarious and very true.