Over the past few months I have been on an “advanced malware protection” (AMP) kick. I am fascinated by this topic because it ties together a set of market conditions that can be extremely challenging to navigate through, both for…
Incidents
How Much did Amazon Lose in Yesterday’s Outage?
by Pete Lindstrom • • Comments Off
One of the crucial aspects of risk management for infosec pros to learn is how to estimate consequences. It can be helpful to review incidents and create a model for thinking about losses. Amazon’s outage for an hour yesterday, is…
Thinking about APTs and the RSA Hack
by Pete Lindstrom • • Comments Off
The recent RSA hack has once again (after Google and Aurora made a big splash a little over a year ago) brought to the surface this notion of an “advanced persistent threat.” There is great emotion on all sides of…
Just a Reminder for RSA: The “P” in APT stands for “Persistent”
by Pete Lindstrom • • Comments Off
RSA’s Chairman Art Coviello has issued an open letter to its customers about a security breach that resulted in lost information related to SecurID. Two lines don’t seem to go together: “Recently, our security systems identified an extremely sophisticated cyber…
Vulnerability Creation vs. Discovery vs. Fix
by Pete Lindstrom • • Comments Off
Michael Janke at Last In, First Out is rightly concerned about the respective run rates of the vulnerability creation process and our ability to fix them individually. He asks the question “Are we creating new vulnerabilities faster than we are…