Posts Tagged 'expert'

Security threats not gender specific, nor is knowledge

When it comes to online security, everyone thinks they’re an expert. Especially men, it seems, as a new “report” funded by security software maker AVG suggests. The company says that, like most things, men tend to think that they know more about online security than women. That’s apparently not true, however, as AVG states that everyone suffers online attacks equally, despite what they may think.

The findings come from a survey of 1,400 adults in the UK about their own knowledge of security while using the ‘Net. Men were exceptionally confident in their own security prowess, and only 4 percent of them said they didn’t know what kind on online protection they had in place.

But confidence doesn’t always translate into reality, it seems. AVG’s survey found that a third of all users—both men and women—had suffered some form of identity theft. And when asked whether they would change their habits as a result, only 20 percent said that they would. I guess when it comes to being complacent, men and women are on equal ground. link

Generation Google not so fantastic? meh

It’s true that young people prefer interactive systems to passive ones and that they are generally competent with technology, but it’s not true that students today are “expert searchers.” In fact, the report calls this “a dangerous myth.” Knowing how to use Facebook doesn’t make one an Internet search god, and the report concludes that a literature review shows no movement (either good or bad) in young people’s information skills over the last several decades. Choosing good search terms is a special problem for younger users. (link)

“Computer Forensic Expert” gets defined

Historically, the definition of what constitutes a “computer forensics expert” has been a loose one. Now, however, a number of states have taken action to tighten the rules and regulations that must be met in order for such an investigator to testify in court. South Carolina is one state considering such changes; a bill is up for consideration there that would only allow computer forensic experts to testify in court if those experts are employed by (or own, presumably) businesses that primarily engage in legal work or divorce cases. In essence, the bill would require digital forensic analysts to obtain a PI (private investigator) license if they wish to testify in court.

The purpose of such legislation is not to hinder the commercial success of computer forensics experts or to restrict the number of people practicing the trade. Calling oneself a computer forensics expert in the Yellow Pages and testifying as such in a court of law are two very different things; the distinction hangs upon the legal definition of an expert witness. (link)

forensic data recovery

Security Expert Arrested by Swedish Police

Swedish security expert Dan Egerstad was arrested and questioned by agents of the Swedish National Police during a raid on his apartment earlier this week. Egerstad is responsible for publicly disclosing e-mail account and server login information for embassies, companies, and government agencies. He later published his methodology and revealed that he had collected the information by setting up a specialized packet sniffer on five Tor exit nodes operated by his organization, Deranged Security.

Tor is an anonymous proxy service that relays traffic through a series of nodes in order to obscure the IP addresses of users. Although Tor traffic is encrypted on most of the nodes, it isn’t encrypted on the exit nodes, which relay the data to its final destination. Despite warnings on Tor’s web site, many Tor users who do not use SSL or other forms of encryption do not realize that they are exposing sensitive information to unknown third parties. Egerstad’s filtering experiment revealed the massive volume of sensitive data that is transmitted over the Internet without proper encryption and demonstrated the ease with which a malicious entity can intercept unencrypted Tor traffic. Tor did not immediately respond to a request for comment on the story. (story)


Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 29 other followers

Technorati – Blog Search

Add to Technorati Favorites

submit express