Head of Infosec @ Capsule - Gamer - Cyclist - formerly @alienswede
@jerry Just like every year has been since 1992!
More importantly for the future success of Linux was that the X11 system was ported to it, making 1992 the year of the Linux desktop.
https://lwn.net/Articles/928581/
But you're right... 2024 is surely going to be definitive year.
@steveanderson I'm into it. Because having that meeting would indicate a level of maturity that I can only dream of right now πβ
So often when I stumble upon an article about any kind of "tech decision making", it's really just a sales pitch in disguise. Thinly veiled advertisements from Acme Corp or some other vendor trying to sell their products. #oldmanyellsatcloud #vent
@parvXm Iβve been recommended Perfect Blue before. Iβll definitely check out the others you mentioned too. Thanks!
@Muddobbers Welcome! This place is awesome π
@Mpc0 @deepthoughts10 Thanks for reminding me about the IANS report. That's a good lever to use. At this point I'm just looking for supporting documentation for the case I'm making. It's a pretty reasonable case!
Infosec leaders, what resources, white papers, blogs, research have you come across regarding what an appropriate size for an infosec team is at various types and sizes of companies?
I have seen some research from Gartner and CMU. But they mostly discuss huge orgs. I'm specifically interested in orgs around 800-1000 employees in a healthcare environment. So, HIPAA and troves of ePHI. Perhaps that helps.
Whatchu got? π
#infosec #informationsecurity #cybersecurity #staffing #teamsize #grc
I love that Reddit is doing a Ask Me Anything on their just-announced breach involving the phishing of employee credentials.
https://www.reddit.com/r/reddit/comments/10y427y/we_had_a_security_incident_heres_what_we_know/
Iβve been having a lot of health problems recently which make it difficult to do development work, on both client or personal apps. My last client who provided occasional work has just dropped me. I canβt really take on any big client work due to my health. I am screwed unless I can sell a lot more of my own apps. Can you help me? And boost this thread?
I will reply to this post with links to some of my apps that I think some people might find useful. iOS developers should love some of them.
@rattis Check out Dispatch: https://netflixtechblog.com/introducing-dispatch-da4b8a2a8072
https://github.com/Netflix/dispatch
I've never had a chance to actually try it myself but I've been wanting to check it out since it was announced.
Is that closer to what you're looking for?
A threat actor is offering a service in which they let customers search for keywords across over a thousand hacked mailboxes which likely belong to corporations.
I suspect this sort of service will gain traction in coming years as hacked corporate mail access is relatively common yet not often easily monetizable.
This would allow threat actors to harvest as many webmails as they can via info-stealers infections & bruteforcing and let sophisticated groups attempt to find secrets/credentials that would allow them to perform ransomware attacks, data breaches, etc.
Second image is from www.hudsonrock.com showing the incredible amount of office365 credentials that are in the hands of hackers because of employees downloading info-stealers
@levelbot This is right where they need to be in my opinion.
current flimflam levels are 82%
(82%) β β β β β β β β β‘β‘
Useful thread over on Twitter if you're looking for work:
@defaultvlan That's a much better version of wondering who would code such a mess only to discover it was past me π€£
Layoffs are ripping through tech as a whole and infosec teams are being hit hard. Last September, I was personally let go from an organization that laid off its entire US-based cybersecurity team. π
The people pulling those levers are thinking that "nothing bad has happened yet, so why do we need these expensive folks?". Such a classic failure in reasoning.
Bad actors don't take a break just because the economy is struggling. I expect that the number of breaches will go up in the short term as companies with weakened security teams become easier targets. It's going to be a bumpy ride.
@insiderphd Great interview! Thanks for sharing. I was also on Habbo hotel! I have fond memories of it :apartyblobcat:
@b3cft @insiderphd It started with a conversation with my primary care doctor. I was very up front about not wanting to be sped through or get an assessment from the many "prescription factories" that exist. She had good advice for me from there...
