“One Adam Twelve, One Adam Twelve…”: Security Theater & Doggies Doo June 11, 2012
Posted by Chris Mark in security theater.Tags: cybercrime, deterrence theory, jerusalem, mark consulting group, security, security theater
add a comment
Chris’ Dog BO
Today on Yahoo News Canada is a story in which it is claimed that Jerusalem such a problem with dog poop that they are enacting a program in which they will match offending doggy doo against a master DNA database. According to a statement from the Jerusalem municipality: “The municipality pilot project calls for establishment of a database of dog DNA to allow us to reduce the soiling of pavements, parks and public spaces,” In short, the city plans on DNA profiling 70-80% of the 11,000 dogs that live in Jerusalem and then, if there is a “pile” of DNA on the sidewalk, someone will pick it up, send to a lab, test it, and then the owner of the offending pooch will be fined $193. This plan is so ridiculous that it does not merit much discussion but…for the sake of this blog let me use an example from a previous post. (more…)
Oh My!! More than 6 Million LinkedIn Passwords Stolen! June 6, 2012
Posted by Chris Mark in cybersecurity, Data Breach, Industry News.Tags: Chris Mark, cybercrime, cybersecurity, InfoSec, LinkedIn, privacy, security, Stolen Passwords
add a comment
Change your LinkedIn password now! According to an article on CNN, over 6 million LinkedIn passwords were stolen by Russian hackers. LinkedIn also confirmed in their own blog post that some of the posted passwords did match LinkedIn accounts. According to the story: “The 6.5 million leaked passwords were posted Monday on a Russian online forum, camouflaged with a common cryptographic code called SHA-1 hash. It’s a format that’s considered weak if added precautions aren’t taken. Roughly half of the “hashed” passwords have already been decoded and posted online in human-readable text.” You can read more about how Hashes are cracked using Rainbow tables in the awesome post here.
Combining Blog Content (GlobalRiskInfo / DrHeatherMark) May 31, 2012
Posted by Chris Mark in News, Politics.Tags: Chris Mark, cybercrime, Dr. Heather Mark, InfoSec, InfoSec & Privacy, risk, risk management, security
add a comment
In the near term I will begin integrating blog content from Dr. Heather Mark’s privacy and payments blog. This will give new information and insight into privacy, regulatory, and information security issues. We will be combing both blogs into GlobalRiskInfo. Please stay tuned and, in the meantime,take a spin through Heather’ blog!
“Flame On!”- New CyberWeapon Discovered in Middle East May 28, 2012
Posted by Chris Mark in cyberespionage, cybersecurity, InfoSec & Privacy, News, terrorism.Tags: Chris Mark, cybercrime, cyberespionage, cybersecurity, data theft, Duqu, Flame, hack, InfoSec, Kapersky, security, Stuxnet
1 comment so far
Complementing the post CyberEspionage, researchers have discovered a new cyberweapon. First there was Stuxnet, then there was Duqu..now there is Flame. Called by a researcher: “…the most complex piece of malicious software discovered to date…” the recently discovered virus is designed to capture data but can also change computer setting and turn on integrated microphones to record what is being said in the room. Kapersky labs discovered the virus, dubbed “Flame”, which has been lurking undetected inside of thousands of computers in the Middle East for as long as 5 years. According to Kapersky, the countries with the most infections include Iran with the most infections followed by Israel/Palestine area, Syria, and Sudan. According to Kapersky senior researcher Roel Schouwenberg: “The virus contains about 20 times as much code as Stuxnet, which attacked an Iranian uranium enrichment facility, causing centrifuges to fail. It has about 100 times as much code as a typical virus designed to steal financial information”. (more…)
“Use of Force” Webcast – Nexus Consulting Group May 16, 2012
Posted by Chris Mark in Industry News, Laws and Leglslation, terrorism, weapons and tactics.Tags: Keving Doherty, maritime piracy, Maritime Security, nexus consulting, security, somali pirates, Use of Force
add a comment
Nexus Consulting Group is scheduling a webcast for the week of May 21- 25 on the topic of the Use of Force in Maritime Security. Recently, a video surfaced of a maritime security company firing on Somali Pirates. While the topic has been debated, Nexus was mistakenly identified as the company that took action. If you are interested in learning about Use of Force and the legal issues, then contact Nexus at info@ncga.us and note your interest in attending the webcast and we will advise which sessions are available. You can download the Use of Force Primer and follow along document here.
Having previously worked for a maritime security company, I felt pretty informed on the Use of Force and Maritime issues. After speaking to Kevin on numerous occasions, it was apparent that Kevin is an expert on Maritime Security and the industry at large. I always come away from a discussion with Kevin impressed and having learned something new about maritime security. Any knuckle-dragger can carry a gun and use it indiscriminately. It is appropriate, disciplined use of a weapon that separates professional security from amateurs. There are few security companies that I would recommend and that have the expertise to protect ships while minimizing risk to ship owners. Use of force is an critical yet complex subject. I recommend you take the opportunity to listen to an expert on maritime security and definitely take the opportunity to ask questions.
Global Security, Privacy, & Risk Management 