Probably because I’m becoming an increasingly grump old man, I tend to be increasingly cynical about the state of the IT Security industry. Just ask yourself how many CEOs will give keynotes about Google driverless cars and talk about how these cars will be potentially hacked, and why we all need better security. Then they go on to imply that they will be in the forefront of doing just that. Never mind the fact that organizations are being hacked on a daily basis and they can’t fix that! And we just lap it up. Sometimes you wonder if many people in our industry are on some sort of medication called gullibility.
Gullibility is an interesting drug. Some writers on gullibility have focused on the relationship between the negative trait of gullibility and positive trait of trust. As one author put it so succinctly, “gullibility is a foolish application of trust despite warning signs that another is untrustworthy.”
So how’s your health?
Like the health sector we are now bombarded with organizations offering “free” IT security checks. I recently saw an insurance company offering you the chance to win a health assessment. The winner is assured of getting a detailed report about the state of how their “heart, lungs, muscles and metabolism perform during exercise”, which will be followed by free “practical medical and lifestyle action plan.”
Don’t get me wrong – I’m not saying all IT Security vendors are out there to get you, and that health checks are not good – free or otherwise - but it is important to pay attention to those that seem to offer happy pills. When you read claims that putting a Shared Account Password Management solution in place will mean that “Security threats arising due to password sharing are completely eliminated”, I would seriously wonder about the naivety of anyone who would take this at face value!
And do we really need some analyst to tell us we have problems, and should we happen to take some medicine that has been touted by some marketing guru, that all will be fine? I don’t think so, when we know full well that our organizations are a ticking time bomb waiting for a security breach. Sorry, I’m beginning to sound like one of these “free” health checks!
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.