Dr. InfoSec's Quotes of the Week (011)

Friday, October 15, 2010

Christophe Veltsos


Naval War School on Stuxnet

"The Stuxnet worm is a wake up call to governments around the world. It is the first known worm to target industrial control systems and grants hackers unobstructed control of vital public infrastructures like power plants, dams and chemical facilities..." -- Derek Reveron, professor of national security at the U.S. Naval War School in Rhode Island

WebSense on Distance to Malware

"No matter how careful you are, today’s Internet user is usually only two short clicks away from malicious content and an infected computer or network..."  -- Charles Renert, Senior Director for Security Research at Websense

Geer on Cyber-Security

"Information security is perhaps the hardest technical field on the planet. Nothing is stable, surprise is constant, and all defenders work at a permanent, structural disadvantage compared to the attackers. Because the demands for expertise so outstrip the supply,the fraction of all practitioners who are charlatans is rising..."  -- Dr. Dan Geer, CISO of In-Q-Tel, in prepared testimony presented before the U.S. House Subcommittee on Emerging Threats, Cybersecurity, and Science on April 25, 2007

Hypponen on Stuxnet

"It is rare to see an attack using one zero-day exploit. Stuxnet used not one, not two, but four..."  -- Mikko Hypponen, Chief Research Officer at F-Secure

@EdSkoudis on Security

"Just because something is configured 'correctly' doesn't mean that the system is actually secure..." -- Ed Skoudis, co-founder of Inguardians

Pescatore on Malware

"Just as we learned years ago in the crypto world that governments and government agencies do *not* have a monopoly on crypto talent, the same is true with malware development. It is a mistake to think that sophisticated malware means government sponsorship - - the talent pool putting together financially motivated targeted attacks for cybercrime has been leading the way for a long time..." -- John Pescatore, Vice President at Gartner Inc.

Cross-posted from Dr. Infosec


Possibly Related Articles:
Security Awareness
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.