Jan 27
I’ve practiced cyber security for 10 years. Not as long as some, but longer than most. I don’t consider myself an expert because I don’t believe the field is mature enough to identify an expert. But I’ve fought many battles with the adversary. I’ve felt elated success and stinging failure. I have my share of war stories. I struggle …
Permanent link to this article: http://www.activeresponse.org/what-it-takes-to-fight-the-hackers/
Jan 07
2012 has been an interesting year with a growth in our understanding of our adversaries and some high-profile international security incidents. 2013 will continue to impress, but differently. It will ultimately be a year of strategic growth. Here are 5 cyber security predictions for 2013. 1. There will be little change to …
Permanent link to this article: http://www.activeresponse.org/5-cyber-security-predictions-for-2013/
Nov 12
Pivoting is, in my humble opinion, the most important skill of intrusion analysis and incident response. I have been teaching/training/mentoring intrusion analysts for over 7 years. In my experience, this is the most difficult skill to train as it requires creativity, attention to detail, and a full knowledge of their data sources and how to …
Permanent link to this article: http://www.activeresponse.org/snakes-and-ladders-how-intrusion-analysis-and-incident-response-is-like-a-board-game-and-the-critical-role-of-pivoting/
Oct 31
Washington DC – After a major computer attack on a hospital network by a relatively unknown hacker caused the death of three patients there were many questions. Why did the hacker do it? Was the hospital doing enough protect its patients? Why wasn’t the security good enough to prevent the attack? Now that the trial …
Permanent link to this article: http://www.activeresponse.org/two-computer-security-experts-jailed-for-failure-to-prevent-hospital-hack/
Oct 20
I love to work to music. I almost don’t even care to what genre or song I’m listening. Of course, music is a highly personal choice. While sometimes I listen to Pandora or another Internet radio station for variety, I also have a selection of my favorite albums at hand which I pick out like …
Permanent link to this article: http://www.activeresponse.org/how-i-work-to-music-and-15-songs-i-work-with/
Sep 29
Here are some knowledge areas which I consider necessary to conduct effective intrusion analysis and operations. In future articles I will go into further details on how to improve your skills in each of these areas (and link them from here). The knowledge areas are not listed in any particular order. Every organization’s mission, …
Permanent link to this article: http://www.activeresponse.org/15-knowledge-areas-and-skills-for-cyber-analysts-and-operators/
Sep 15
All humans have a basic set of needs which they work to satisfy – as described by Maslow in his seminal, “A Theory of Human Motivation.” Maslow did not create a true hierarchy. He describes how there are sometime competing and/or complementary needs. Instead of a strict hierarchy, these needs form dominating preferences or priorities. It made …
Permanent link to this article: http://www.activeresponse.org/a-hackers-hierarchy-of-needs/
Jul 12
Here are 5 cyber security ideas to improve your analysis and understanding which will take no more than 10 minutes of your time. 1. Inspect all events with a sliding scale – Good, Suspicious, Bad One of the easiest, and worst, mistakes an analyst can make is to be too firm in their judgement. I …
Permanent link to this article: http://www.activeresponse.org/5-intrusion-analysis-ideas-in-10-minutes/
Jun 22
Recently, a very amusing website launched to ask a very simple question, “will using the prefix cyber make me look like an idiot?” It predicated the response based on an answer to three questions: (1) Are you a science fiction author, (2) are you about to engage in dirty instant messaging, and (3) are you using …
Permanent link to this article: http://www.activeresponse.org/what-is-cyber/
Jun 07
Anti-virus is a multi-billion dollar industry and is a necessary best-practice and due dilligence measure everyone must implement. Yet it is failing, by its own volition, spectacularly – and only delivering the least-common-denominator prevention without any signs of improvement. How can consumers of products, namely security products, guarantee better service and quality from the vendors? By …
Permanent link to this article: http://www.activeresponse.org/united-we-stand-divided-we-are-falling-are-security-collectives-a-more-effective-model/
Loading tweets...
Recent Comments