Over the weekend a twitter discussion led to an (oft-discussed) idea that we, the Canadian infosec community, need to start a CERT-like entity here in…
You are at best fighting a delaying action. You cannot even hold back the tide. We are losing. Losing means that our current approach to…
It was not a great week for Western civilization as politicians worked to increase police powers without judicial oversight. Under the banner of stopping pornographers…
An Israeli hacker group, IDF-Team (not to be confused with the actual Israeli Defense Force), responded to recent hacks of El-Al and the Tel Aviv Stock Exchange…
I know a lot of companies are struggling with watching their internal network (it's way easier to watch the perimeter, right?", but this is mind…
I love it when someone tells me most of my risk comes from insiders. In the past week I've had the insider breach conversation twice.…
Checkout the videos from the recent 28C3 conference here, some great ones include: The Science of Insecurity - a great primer on why network/communication protocols are such…
I recently had the pleasure of being interviewed by a local news channel, an interesting experience and one that made me reflect on a bad…
UPDATE: Turns out that Global was just using the Anonymous threat as a segue into protecting your credit card data, my brain just played connect…
There are many statements infosec professionals assume to be true - you need a CISO, the APT's are out to get us and an IPS…