Blog – Page 3 – The Null Session

Apr

26

2017

April 26th, 2017 by John

Major General Brett I. Williams discusses the distinction between cyberwarfare and information warfare. The distinction can be important!

http://www.c4isrnet.com/articles/cyberwarfare-and-information-warfare-must-be-distinguished-commentary

Posted in Blog, Cybersecurity & Infosec, Nation State

Apr

25

2017

April 25th, 2017 by John

Solomon Smith and I presented at the Spring ISACA meeting in Iowa City, IA today on cyber education.

http://alignedsecurity.com/index.php/2017/04/25/illowa-isaca-cyber-education-presentation/

Posted in Blog, Community, Cybersecurity & Infosec, Events

Apr

14

2017

April 14th, 2017 by John

This is an interesting case where a DuPont employee stole trade secrets prior to retirement. It is often the young, brash employee who is the scapegoat. I speak from personal experience, that in the Midwest, large, old corporations distrust vendors, contractors and new employees, and tend to overlook the risk that comes from the long-time “trusted and loyal” employee. There is even a stigma if you have been at a company a long time, and leave before retirement. However, until recently, many companies continued to provide email and corporate services, and even let retirees keep their laptop, because of their retiree status. Shows that good feelings don’t amount to much, when competitors are willing to pay big bucks for your secrets. Everyone is a potential leak.

Posted in Blog, Criminal, Cybersecurity & Infosec

Apr

07

2017

April 7th, 2017 by John

Here’s a recent blog post I wrote for SC Magazine:

Posted in Blog, Cybersecurity & Infosec, IoT, IIoT, ICS-SCADA

Apr

06

2017

April 6th, 2017 by John

“eFPGA technology has finally come of age.”

Posted in Blog

Apr

06

2017

April 6th, 2017 by John

Posted in Blog

Apr

04

2017

April 4th, 2017 by John

In the ongoing saga of FTC chicanery in the LabMD case… In case you are not up to speed, LabMD was investigated and charged by the FTC for lax security and exposure of patient data in 2009, and in subsequent hearings it became evident that the FTC was on a fishing expedition, paying infosec contractor Tiversa to “manufacture” evidence of malfeasance when there was no proof the data had been stolen or that any harm had subsequently come to patients of the small cancer detection lab.

This week, a federal judge denied the motion to dismiss the First Amendment case that LabMD brought against alleged complicit FTC employees. An excerpt from Law360, below: Read More

Posted in Blog, Cybersecurity & Infosec, Law and Regulations

Apr

04

2017

April 4th, 2017 by John

I recently wrote a blog article for Ingegy on the topic of IIoT security. Check it out!