I was on twitter and saw a link to an article that discusses why the bad guys seem to be winning the IT or cyber security battle.
This article is well written and offers readers many items to ponder and provides links to a lot of great tools.
A couple of highlights from the article:
Internet User Guide: There is no User Guide to the Internet that lays out briefly and in simple language the obvious mistakes that should be avoided. Neither hardware manufacturers, nor ISPs, nor operating system vendors have bothered to offer a helping hand to their most clueless users. A pamphlet would be plenty.
Home Wi-Fi: People use WEP on their home Wi-Fi networks. That Verizon continues to employ WEP for new customers is shocking. It should be illegal. WEP encryption is easily broken, unlike the two newer schemes WPA and WPA2. That said, even WPA and WPA2 can be hacked if the password is weak.
Public Wi-Fi: People use unencrypted public Wi-Fi networks without a VPN. You don’t spit into the wind, you don’t tug on Superman’s cape and you shouldn’t use unencrypted public Wi-Fi networks without a VPN. It opens up a slew of potential problems.
And the author points out something that I thought about while reading news accounts concerning Lockheed-Martin.
“It has been all over the news recently that Lockheed-Martin’s network was attacked and somewhat breached. What I find interesting about the story is that as a result of the attack, Lockheed-Martin "took swift and deliberate actions" to increase their network security. Really? If there was any company that should have the best possible computer security its Lockheed-Martin. Yet, even they weren’t giving security sufficient priority.”
Head over and read the rest of Michael Horowitz’s article. Why the bad guys are winning
