Gunnar Peterson has a great post on security budgeting. His essential point is to apply a “flat tax” to all IT spending. The value is in its simplicity. We can get a lot more complex (and often do), but this…
Highlights, Random
RSA Conference 2010 – Ghost of Conference Past
by Pete Lindstrom •
I was talking with my buddy Ben Rothke tonight about the security graveyard – companies that are no longer with us (he’s been a part of a number of them, but I’m not making any connections . He also challenged…
Economics and Risk, Highlights, Metrics
More Breach Costs “per record”
by Pete Lindstrom •
Ponemon Institute has issued its annual report on the cost of data breaches. I wrote last year about using per record costs for data breaches. An excerpt: It is common when estimating costs of data breaches to quote costs “per…
Economics and Risk, Highlights, Metrics, Random, Threat Management
Addressing the Advanced Persistent Threat (APT)
by Pete Lindstrom •
In the past few weeks, the Advanced Persistent Threat (APT) has been all the rage in the infosec world. Security professionals everywhere are taking sides about whether APT is new or not, despite (or perhaps due to) the lack of…
Highlights
What does “Aurora” mean in Chinese?
by Pete Lindstrom •
George Kurtz of McAfee is providing some details about the hack attack against Google et.al. purportedly originating in China. One of his comments: I am sure you are wondering about the name “Aurora.” Based on our analysis, “Aurora” was part…
Highlights
Meet my friend Micromort – he’s one in a million!
by Pete Lindstrom •
No, it i’s not some sort of mini-Mortman! It’s micromort, or in other words, a one-in-a-million chance of death. How can you add (or is that subtract?) a micromort to your… err.. life? Here are some options (from Wikipedia): smoking…