Security Haiku

Do you ever get bored when someone starts of a presentation by going over how bad the infosec situation is? They'll quote figures of breaches and how vulnerabilities are going through the roof. Or maybe you're pressed for time and need to get to the meaty part of your security presentation but want to make … Continue reading Security Haiku →

Bane for CISO

Last weekend I came to the conclusion that Bane - the bad guy from The Dark Knight Rises would make the perfect chief information security officer.

Think like a hacker – the GC version

Girl Cynic weighs in her opinions on what it means to 'think like a hacker' and it isn't pretty.

Think like a hacker

“You need to think like a hacker” This was the sage advice being given out by an industry veteran in response to a question about working up the infosec ladder. I started nodding in agreement but then stopped myself mid-nod. Thinking like a hacker is a great statement to make. It can fit comfortably into … Continue reading Think like a hacker →

10 reasons Girl Cynic is better than J4vv4D

A fracas over a fracas and Girl Cynic is out on a mission of world domination.

TV’s and the internet of snooping

Much fuss was made when Samsung's smart TV's privacy policy was bought to light by @Xor on twitter that it bore an uncanny resemblance to features mention in the book 1984. Left: Samsung SmartTV privacy policy, warning users not to discuss personal info in front of their TV Right: 1984 pic.twitter.com/osywjYKV3W — Parker Higgins … Continue reading TV’s and the internet of snooping →

CRASS: Camerons Crypto

British PM David Cameron has probably spent many a night fantasising about giving intelligence agencies the ability to intercept and read any form of online communication. Think of the kids, think of terrorism, think of all the problems that could be solved if we had open and transparent communication. You know, like being able to … Continue reading CRASS: Camerons Crypto →

Is there a traitor in our midst?

Usually my research ends up behind the 451 paywall, but I noticed the good folk at Guidance Software have made one of my recent reports 'free' to download at their site behind a registration wall. It's part of research I'm doing looking at the insider threat market and I’d be interested to hear your views … Continue reading Is there a traitor in our midst? →

CRASS – Look back at 2014

With January 2015 coming to an end and 2014 seeming like a distant memory in the rear-view mirror, I thought it was a good time to reflect upon some of the notable security incidents and the impact they've had (if any) in the long term. There were many to choose from - which is great … Continue reading CRASS – Look back at 2014 →

CRASS – Vulnerability Disclosure

After a very slow 2014, Cynical Rants About Security Stuff - or CRASS for short (unfortunate and unintentional) is my attempt at being more regular in publishing content. The idea is that once a week I'll ramble for a couple of minutes on any given topic. This week I rant about the vulnerability disclosure process and … Continue reading CRASS – Vulnerability Disclosure →