Follow

3 reasons for a false sense of security:

infosec-handbook.eu/blog/discu

– reason 1: Legacy configuration and outdated security tips
– reason 2: No threat model
– reason 3: No checks and no monitoring

Don’t just assume security; actually check it.

@infosechandbook
As technically informed non-programmer I need to rely on #guidelines, e.g. to quickly set up a new #firefox profile.
Also, in times where all aspects of life move into #digital sphere it should be a consumer right & legal #obligation to provide security by default & highest level of #privacy

@infosechandbook
I like your general #advice which helps to rethink procedures. but I feel the text would be easier to understand if it was more specific, less general & links to pages you comment on. #thanks in any case #reader #feedback

@infosechandbook

Henry: Always assume everything in your security system fails. How do you know you've been compromised, and how do you recover?

Other: But that can't happen, we have an X (usually X='firewall').

Henry: A high percent of threats are insider threats or come from bases set up behind your outer defenses.

Other: Nooooooooo!

lol

Sign in to participate in the conversation
Mastodon

mastodon.at is a microblogging site that federates with most instances on the Fediverse.