I've railed in the past on completely unqualified "infosec degree" holders. Apparently I'm not the only one who has negative experiences there.
#6wordcyber InfoSec Masters degree: "What's a botnet?"
— Looney Carveheart (@hacks4pancakes) October 19, 2015
This next tweet sadly mimics real practices I've heard from clients.
"We use uncommon ports for security" #6wordcyber
— Ciด้้้้้็ran McNดlly (@CiaranmaK) October 19, 2015
And I think every infosec consultant has heard this one:
We're not important enough to hack.
#6wordcyber
— O-scare-on (@oscaron) October 19, 2015
Need a feature for that software you paid for? Sure thing - it's coming right up...
That's fixed in our next release. #6wordcyber
— Linux Dark ♞ (@lnxdork) October 19, 2015
One of our personal favorites (and common infosec fallacies):
@thegrugq We're PCI compliant, so we're secure #6wordcyber
— Martin McKeay (@mckeay) October 19, 2015
Grab your tinfoil hats everyone:
"The NSA is my main adversary." #6wordcyber
— Kyle Maxwell (@kylemaxwell) October 19, 2015
And who doesn't need free credit monitoring?
One year of free credit monitoring #6wordcyber
— Steve Gibson (@stevegibson) October 19, 2015
Doing an IR? Don't just "clean" the systems. Rebuilding is usually the best plan.
IT says they cleaned the systems.
#6wordcyber
— Jaded InfoSec Pro (@edwardmccabe) October 20, 2015
But @packetdude took it a step further and created a meme from my LinkedIn picture.
— Matt Harvey (@packetdude) October 19, 2015
There are lots more out there, you should check them out. But who ever thought you could say so much about cyber with so few words.
I am using Kaspersky protection for a couple of years now, I would recommend this solution to everybody.
ReplyDelete