The Case Against AWS – And It’s Not AWS’ Fault

Recently the NSA, a highly secure US government entity, left an unprotected disk image loaded with classified information right out in public on AWS. The NSA left it there on an “unlisted” server, but it didn’t have a password. Thus, if you stumbled across it, or someone went looking for it (a cybersecurity person at UpGuard did just that), it was yours for the taking. I will bypass all the ironic commentary/jokes that could/should be...

Read More

Advanced Malware Detection and Response and… on the Rise

Think about all of the cybersecurity industry activity with advanced malware detection and response and what comes to mind? Most people would probably focus on technology vendors like Bromium, Cylance, Damballa, FireEye, and Palo Alto Networks since these firms have garnered headlines, raised vast fortunes of VC funding, and even pushed through successful IPOs. Yup, all of these technology vendors seem to be doing just fine, but there...

Read More
Solving Cloud Security Will Open Adoption Floodgates
Mar24

Solving Cloud Security Will Open Adoption Floodgates

According to the upcoming Verizon 2014 Data Breach Investigations Report, the time it takes for an attacker to compromise a system in three-quarters of breaches is days or less, but less than 25% of breaches are discovered in days or less. If that 75%-plus failure rate isn’t alarming enough, then there’s the recent Enterprise Strategy Group survey of security professionals that found that almost half (42%) believe that...

Read More

Are US Tech Companies Suffering a Slow and Agonizing Death?

Are technology companies in the United States now suffering from a slow and agonizing death? In what is being called “The Snowden Effect,” the infamous former National Security Agency contractor’s disclosures revealing the extent of NSA worldwide spying efforts have prompted companies to avoid or leave US technology firms in droves. This has been especially true with regard to US-based cloud services since it was realized that most of...

Read More

Good News/Bad News on Cybersecurity Priorities & Spending

With the Winter Olympics in full-swing, the cybersecurity community anxiously awaits another global event, the 2014 RSA Conference. Like Sochi, the RSA Conference comes with its own controversy, but I still anticipate that most of the global information security glitterati will be in San Francisco two weeks hence. In spite of the RSA/NSA imbroglio, I for one wouldn’t be surprised if this year’s RSA Conference exceeded last year’s...

Read More