Towards Practical Recipes for Active Defense
What I call the militarization of security has raised the bar for defenders. For the last few years I’ve been telling clients to “assume your enterprise is already compromised,” especially if its in government, financial services, high technology, media or… Continue reading
The Breach that Spoiled Christmas
Trouble stalks the land of milk and honey. Hackers and identity thieves prowl amid the flocks of shoppers like hyenas this busy Christmas season, picking off their prey. Thus, it seems I “purchased” a $241 Michael Koors handbag from Macy’s… Continue reading
Privacy by Design Moves Mainstream
Dr. Ann Cavoukian, Information and Privacy Commissioner for Ontario has promoted the concept of Privacy by Design (PbD) for several years. But what many people don’t realize is that PBD is an international standard, and that privacy can be addressed… Continue reading
Speaking at the 2013 Privacy by Design User Forum Tomorow
Tomorrow, I’ll be speaking at the 2013 Privacy by Design User Forum in Toronto, CA.
Only have time for a quick note as I rush off to the airport, but the event is described at http://www.2013pbdforum.ca/ as… Continue reading
Cyber-Investigations: The Case of the Command-Injection Attack
As a consulting analyst, I focus on security architecture and strategic planning, not day to day operations. But people know that if you meet a security expert at a dinner party you can probably get him to investigate that strange… Continue reading