The recent RSA hack has once again (after Google and Aurora made a big splash a little over a year ago) brought to the surface this notion of an “advanced persistent threat.” There is great emotion on all sides of…
Economics and Risk
EMC (RSA) Acquires Netwitness
by Pete Lindstrom •
It is no surprise that EMC has acquired Netwitness. Looks like they are serious about this security stuff Here is a list of EMC / RSA acquisitions through the years, for your historical enjoyment: July, 2001 RSA Security acquires Securant…
Incidents, Threat Management
Just a Reminder for RSA: The “P” in APT stands for “Persistent”
by Pete Lindstrom •
RSA’s Chairman Art Coviello has issued an open letter to its customers about a security breach that resulted in lost information related to SecurID. Two lines don’t seem to go together: “Recently, our security systems identified an extremely sophisticated cyber…
Economics and Risk, Highlights, Metrics, Random
Attention InfoSec Pros: measuring risk is in your future
by Pete Lindstrom •
Mike Rothman of Securosis stirs things up a bit with his “Risk Metrics are Crap” post. This type of exercise forces participants to make public commitments. In itself, this is not a huge deal since many positions of those in…
Economics and Risk, Metrics, Random
Nuh, uh; Yuh, huh
by Pete Lindstrom •
(is that title the proper English spelling of two kids disagreeing? who knows…) Andrew Gelman’s enlightening blog points to a great example how scientific research helps us get smarter. He excerpts: Three articles published [by Brett Pelham et al.] have…
Highlights
Does Brand Matter in Security?
by Pete Lindstrom •
My buddy George at InformationWeek suggests that security breaches have negative impact on the brand. The notion of a “brand” is something I find very interesting wrt security, if only that I have heard many, many times from security folks…