| By Peter Silva | Article Rating: |
|
| July 7, 2011 10:45 AM EDT | Reads: |
1,216 |
Is your stomach turning or does it feel a calm satisfaction halfway through 2011? What seemed like a relatively calm 2011 during the first couple months has turned into a banner year of breaches. The forecast could qualify as: In like a Lamb, out like a Lion as they say. When thinking about this post and even as I started typing a couple sentences ago, I was planning on reviewing the trends of the last 6 months: looking at the 2011 Verizon Data Breach Investigations Report and how the total number of compromised records has decreased even if the number cybercrime caseloads has increased; examining some recent cloud surveys to see if security is still a top concern; reviewing the latest Ponemon Institute study which says that cyber attack and potential breach is a statistical certainty with 90% of businesses surveyed reporting at least 1 security incident over the last 12 months; the 2010 Symantec/Ponemon Data Breach Loss Report from this past March which calculated that the average cost to a company was $214 per compromised record and $7.2 million over the entire organization; a little on the rise of hactivism; along with how human behavior plays an important role in many breaches.
As I was doing a little research gathering up links, stats and other resources for this story, I ran across this chart from IEEE and I had to share it. It’s called The Two Faces of Hacking. It looks at the 25 biggest and best breach stories and maps them based on innovation and impact. I would suggest visiting the original site since there is some interaction with the chart (good, bad and neutral hacks) and links to each of the stories. Maybe I should have titled this blog, Hacks: The Good , The Bad, and The Neutral.
The story links are interesting like the Torturing the Secret out of a Secure Chip hack, the The Steampunk Contraptors and of course, Hands On about the RFID guinea pig but was surprised that the digital certificate breach didn’t make the list. Anyway, this chart seemed like the perfect way to review the past and ponder the future.
ps
Resources:
- The Two Faces of Hacking
- And The Hits Keep Coming
- Unplug Everything!
- Technology Can Only Do So Much
- 3 Billion Malware Attacks and Counting
- The Big Attacks are Back…Not That They Ever Stopped
- Has The Sky Cleared on Cloud Security?
- Defense in Depth in Context
- Where Do You Wear Your Malware?
- Cure Your Big App Attack
- F5 Friday: Eliminating the Blind Spot in Your Data Center Security Strategy
Technorati Tags: F5, data breach report, threats, Pete Silva, security, malware, technology, phishing, cyber-threat, social engineering, attacks, virus, vulnerability, web, internet, cybercrime, identity theft, scam, data breach, rsa, lockheed, imf
| Connect with Peter: | Connect with F5: |
Read the original blog entry...
Published July 7, 2011 Reads 1,216
Copyright © 2011 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.
More Stories By Peter Silva
Peter Silva covers security for F5’s Technical Marketing Team. After working in Professional Theatre for 10 years, Peter decided to change careers. Starting out with a small VAR selling Netopia routers and the Instant Internet box, he soon became one of the first six Internet Specialists for AT&T managing customers on the original ATT WorldNet network.
Now having his Telco background he moved to Verio to focus on access, IP security along with web hosting. After losing a deal to Exodus Communications (now Savvis) for technical reasons, the customer still wanted Peter as their local SE contact so Exodus made him an offer he couldn’t refuse. As only the third person hired in the Midwest, he helped Exodus grow from an executive suite to two enormous datacenters in the Chicago land area working with such customers as Ticketmaster, Rolling Stone, uBid, Orbitz, Best Buy and others.
Bringing the slightly theatrical and fairly technical together, he covers training, writing, speaking, along with overall product direction and evangelism for F5’s security line. Prior to joining F5, he was the Business Development Manager with Pacific Wireless Communications. He’s also been in such plays as The Glass Menagerie, All’s Well That Ends Well, Cinderella and others. He earned his B.S. from Marquette University, and is a certified instructor in the Wisconsin System of Vocational, Technical & Adult Education.
- Cloud Economics – Amazon, Microsoft, Google Compared
- The Top 100 Bloggers on Cloud Computing
- Cloud Expo New York Preview: CIO of the NRO to Present June 6
- Cloud Expo Day Four: Still Very Cloudy in New York
- Is Cloud Computing for Real?
- Countdown to Cloud Expo: Forrester Reports on the Private Cloud
- Cloud Expo Silicon Valley Call for Papers Deadline July 29, 2011
- Cloud Computing: Holland Strongly Represented at Cloud Expo 2011 New York
- Cloud Data Privacy, Residency, and Security at Cloud Expo 2011 New York
- Cloud Computing: PerspecSys Closes $8M Series A Financing
- NIST Cloud Security Model
- Sony Hacked & Hacked Again & Again & Again
- Cloud Economics – Amazon, Microsoft, Google Compared
- The Top 100 Bloggers on Cloud Computing
- Cloud Expo New York Preview: CIO of the NRO to Present June 6
- Cloud Expo Day Four: Still Very Cloudy in New York
- Is Cloud Computing for Real?
- Countdown to Cloud Expo: Forrester Reports on the Private Cloud
- Cloud Expo Silicon Valley Call for Papers Deadline July 29, 2011
- Cloud Computing: Holland Strongly Represented at Cloud Expo 2011 New York
- Making the Cloud Safe and Secure at Cloud Expo 2011 New York
- Cloud Data Privacy, Residency, and Security at Cloud Expo 2011 New York
- Cloud Computing for Law Enforcement
- PacketMotion Secures VM-to-VM Communications
- Effective Page Authorization In JavaServer Faces
- The Top 250 Players in the Cloud Computing Ecosystem
- IBM Security Report Predicts Mobile/Satellite Attacks in 2005
- SOA Focus - Web Services Security in Java EE
- Java Application Security in the Corporate World
- ColdFusion Security Best Practices
- How to Provide Dynamic Security Permissions
- Cloud Expo New York Call for Papers Now Open
- SPI Dynamics Security Guru to Speak at AJAXWorld Conference 2007 East
- How Important Is Security?
- Enterprise Web Services Security: A Reference Architecture
- The Next Chapter in the Virtualization Story Begins



































