Newsletters

Select newsletters below and click the button to sign up!

Boston News NY News
DC News Internet Daily
SiliconValley News
InternetNews Business Report




Become a Marketplace Partner


Partner With Us


Internetnews Bloggers

Recent Entries

Archives

July 2009
Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Monthly Archives

Search The Blog

Netstat -vat by Sean Michael Kerner (bio)

A command line view of IT



Are IT security journalists -- insecure?

By Sean Michael Kerner on July 24, 2009 10:47 AM
security-200x180-redlock_small.jpg
From the 'funny, I don't feel insecure...' files:

With Black Hat coming, I get a lot of 'interesting' pitches from PR people. One particularly interesting one I received is alleging that media professionals and organizations are vulnerable to IT security attacks.
"Members of the press are dropping the ball in efforts to protect themselves against online threats, even though they are more aware of and active in covering the subject, according to the results of a poll recently conducted by the BPM Forum and AVG Technologies," the pitch states.
O RLY?? I didn't know I was dropping the ball.

Some of the figures from the survey (and for the record I was not a participant in the survey, nor was I solicited to be one, even though I was solicited on the PR pitch about the news):
  • 80 percent of media staff rarely or never inform their network administrator of online security concerns they have 
  • More than half don't change their passwords, or rely on their company to do it for them
  • Nearly 70 percent of press reporters and editors feel threatened by online malware or spyware
Uh huh.

Well, last year at Black Hat, journalists were in fact targeted - by other journalists. Yes there was a 'Wall of Sheep' for the general attendee population, tracking those that sent passwords in the clear too. So I shouldn't be too surprised that my peers may have IT security insecurity feelings.

I'm not one of them - likely for two very specific reasons.
1) I run Linux. Yes I know Linux can be attacked too, but it doesn't present the same broad attack surface that Windows PCs provide.

2) Prior to attending Black Hat (or any conference for that matter), I'll run my own mini pen-test over the course of a few days of regular usage to ensure that I've haven't got open ports running and that I'm not unknowingly passing passwords in the clear.
So my suggestion to my peers (if in fact you are feeling insecure), is not too worry too much. There is nothing wrong about bringing up security concerns to your network admins. Changing passwords is often not any harder than making a cup of coffee. And hey there are a lot of great free and open source tools out there that can help you to audit your security.

Do hackers target journalists? Maybe. But they also target everyone else too. It's not personal, it's (usually) about money.

| Comments (1) | TrackBacks (0) | Share

0 TrackBacks

Listed below are links to blogs that reference this entry: Are IT security journalists -- insecure? .

TrackBack URL for this entry: https://swarm.jupitermedia.com/mt-tb.cgi/8545

1 Comments

Bogdan Bivolaru said:

"It's not personal, it's (usually) about money. "
I would have ended it with something like "It's not personal, attacking journalists is just business as usual for them."

July 28, 2009 7:29 AM

Leave a comment