Vtech breached, customer data stolen. Change your password now!

Parents beware!  Given the proximity of the Christmas holiday, this breach is particularly important.  You may have set and forgotten these credentials a season ago, so go check, update, and monitor accordingly.


Department of Education Lambasted Over Database Vulnerabilities

I honestly do not know what to say or where to begin.  I cannot say that I am surprised that yet another government agency has failed to fund and execute an effective IT security program.  This is a systemic problem and I believe it should be addressed before additional controls are passed down to the private sector.  The approach of “do as I say and not as I do” can no longer be allowed to stand.


The Irony of Ethics in Malware

I have seen this debate in many different forms and all ring true.  Professionalism, consistency of delivery, and customer service are quite relevant regardless of the deliverable.  People are clearly willing to pay for prompt service, whether they originally wanted it or not.  The lessons to be learned are numerous , but allow me to start with the simplest first.  If we as security practitioners approached the proactive controls and the delivery of said controls with the same professionalism, consistency and promptness, would ransomware be as big of problem today?