May 28th, 2011
Education in one of the hard physical sciences can benefit a risk intelligence analyst later in life by providing structured thinking. This is especially useful when detecting ones own cognitive biases and those of others. Among the structured thinking lessons was, ?correlation does not imply causation.? One blogger, with no independent confirmation, correlates network outage at an un-named company + SecurID token refresh = causation = RSA data breach = old tokens completely compromised = TEOTWAWKI. ?Computerworld names the company as Lockheed Martin, again with no apparent independent confirmation. ?Now this may all be absolutely accurate, but the reasoning is out-to-lunch. ?In the last twelve hours world+dog are taking the story and running with it, all without confirmation. ?As it stands it is simply another sensationalized tale of a nascent hypothesis and cannot reasonably be regarded as actionable intelligence. ?It may represent an opportunity for EMC/RSA to set a positive example for communications among security professionals, but it also represents a danger because thus far, they have failed to communicate to our profession enough unambiguous information upon which to make decisions to defend our principals. The result is yet another round of cries that ?the sky is falling.? Only RSA can see to it that it becomes the last.
Tags: INTSUM
Source: http://securityblog.verizonbusiness.com/2011/05/28/weekly-intelligence-summary2011-05-27/
justice fever mickey rourke socom hot rod jodie foster rebecca black
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.