Following the Wh1t3 Rabbit - Practical Enterprise Security

Enterprise Security organizations often find themselves caught between the ever-changing needs of the agile business, and the ever-present, ever-evolving threats to that business. At the same time – all too often we security professionals get caught up in “shiny object syndrome” which leads us to spend poorly, allocate resources unwisely, and generally de-couple from the organization we’re chartered to defend. Knowing how to defend begins with knowing what you’ll be defending, why it is worth defending, and who you’ll be defending from… and therein lies the trick. This blog takes the issue of enterprise security head-on, challenging outdated thinking and bringing a pragmatic, business-aligned, beyond the tools perspective … so follow the Wh1t3 Rabbit and remember that tools alone don’t solve problems, strategic thinkers are the key.

Rafal (Principal, Strategic Security Services)

Don't get lulzed - 3 tips for avoiding headline hysteria

Before everyone gets entirely too excited about the FBI "chopping the head off of LulzSec" - can I add a pinch of commentary?

 

My friend Bill Brenner of CSO Magazine has the typically insightful headline "It's all fun and games until someone LulzSec's an eye" while FOX News has this headline splashed across the front page "EXCLUSIVE: Infamous international hacking group LulzSec brought down by own leader" - both of which make me wonder how many corporate security executives are reading those headlines thinking to themselves "whew! we can go back to not worrying about security again."

Hacktivism - the end result versus the end goal, they are different

Happy New Year friends ...may you have more freedom, more creativity, and more capability in 2012 and beyond.  As they say back home - "To health, wealth, and your wildest dreams coming true!"

Labels: Hacktivism

The Real Consequences of an Anonymous Data Leak

Earlier today, I checked out the information leak that the now-infamous Anonymous collective released from their hacking into the BART system over the weekend in retaliation for what they perceived was a breach of civil rights by BART during a protest last Friday.  I don't need to give you details since you can look those up, or an opinion on whether BART violated civil rights or not ... but I will give you an idea of the consequences of one of these little stunts.

Labels: Hacktivism| phishing

Years of Neglect - Solved in 24 Hours of Panic?

Sometimes ... things go from bad, to worse, to really ridiculous in seconds.  Don't get caught in this madness.

Another Political Hacking - Jordan's Ammonnews Website

There seems to be a rash of politically-motivated web site hacks lately.  The latest site to fall was Ammannews, Jordan's most popular news website.  I can't help but notice the political 'hack-tivism' running rampant lately... maybe it's just being reported more?

Labels: Hacktivism

The War of Whistleblowers: WikiLeaks vs Jester

The war of words has escalated - and WIkileaks is "Tango down" ...as Jester claims.

Labels: Hacktivism
Search
About the Author(s)
Follow Us
Twitter Stream


Community Announcements
HP Blog

Technical Support Services Blog

Labels
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation