Valentine’s Day, hearts and love may bring mixed emotions for security pros
A brief look back on some of the heart-themed security challenges as a cybersecurity army swarms San Francisco
It’s Valentine’s Day and instead of being home with their sweethearts, thousands of security pros are in San Francisco attending the RSA Conference to bolster their security knowledge, skills and awareness.
I can’t help but see a hint of irony here. Not that long ago, love and hearts were things security pros wanted to remove from their lives when they were in reference to the ILOVEYOU virus and Heartbleed.
By year 2000 standards, this was one of the biggest threats of the day. Today, we seem to have better control over virus attacks; still, there is a place in the toolbox and need for the skills to fight the Trojans that slip into our networks – especially when they enter under the cover of love.
The Heartbleed vulnerability that came to light in 2014, was and still is, one of the most serious software vulnerabilities recorded.
Ensuring the security of the code – open source or otherwise – remains a challenge. This was a key message from Josh Corman during his talk on Monday at the DevSecOps forum in San Francisco. Corman believes applying supply chain management to software development will result in faster delivery and higher quality.
If you work or think you work for one of those unpatched organizations, be sure to read Naresh Persaud’s New Year’s resolutions for security pros. It’s not too late to resolve to keep your systems patched and updated, focus on the biggest vulnerabilities and practice good governance.