Who Cares If Ten Million Passwords Were Disclosed?
This past week (as I write this) security researcher Mark Burnett (who literally wrote the book on passwords) released ten million passwords gathered from security breaches. He went one step further and released the account names (without the domain part) of the associated email addresses. That’s a lot of passwords. Here’s why you should care. […]
Could a Hand-held EMP Device Threaten Cyber Security?
The ability to disable computers, cars, or other machinery from a distance without being easily detected has fascinated me for a long time. Years ago I worked for defense cub-contractor founded by engineers who had worked on the Airborne LASER Laboratory (ALL). They successfully used a LASER on board an airplane to shoot down drones. […]
Biometrics — Can You Afford to Lose a Finger?
Biometric authentication has been attracting a lot of attention recently. Every day you see people deftly swiping their thumbs over their phones to unlock them using fingerprint recognition. Iris scanning technology is being introduced to India’s national biometric ID system. It’s the largest such system in the world—with over a billion users—and is used to […]
How to Instill Cyber Security Across the Organization
“A chain is only as strong as its weakest link” “What a cliché!”, you say. Well, it became a cliché for a reason. People keep saying that because it does describe many situations. It’s a useful way of thinking about the world. In cyber security, we have a crucial security chain with links forged from […]
Use Computer Security Day as a Trigger for Security Awareness
November 30th is International Computer Security Day. Since 1998 the day has been celebrated as a way to focus attention on – what else – computer security. I think such observances are an excellent way to tie an organization’s activities to the calendar. Use ICSD to Promote Awareness This Computer Security Day I’d like to […]