Chris Gebhardt commented on Matthew Rosenquist's blog post Cybersecurity Insights Video - Criminalizing Ransomware Payments with Malcolm Harkins
"We made using drugs and narcotics illegal. Still have users.
We made human trafficking illegal.  Still have that.
We made homicide illegal.  Still have crimes of passion.
We made insider trading illegal. Still have them.
We made tax evasion…"
Jan 14
Chris Gebhardt updated their profile
Jan 13
Chris Gebhardt commented on pritha's blog post Log4j Vulnerabilities Guide : 3 Steps to Protect Yourself & CISA Recommendations
"Your flow chart missed the biggest decision point: Is your instance exposed and addressable to the Internet?  If no, your risk is significantly reduced.   If yes, continue.
Just because your app uses Log4J doesn't mean it is directly vulnerable.  If…"
Jan 13
Chris Gebhardt commented on Matthew Rosenquist's blog post Cybersecurity Insights Video - Criminalizing Ransomware Payments with Malcolm Harkins
"This is a zero sum game argument.  If you criminalize the payments, then you force organizations to act as criminals.  They will go underground to restore their business operations. If you don't criminalize the payments, it is still a deminishing…"
Jan 13
Chris Gebhardt replied to CISO Platform's discussion [Please Suggest] Corona Virus: Security advisory for work from home
"While companies are encouraged to use VPN connections, VPNs also have security risks.
One aspect is that of a split tunnel where traffic to the corporate network travels over the VPN while the traffic to general Internet exits the user's home…"
Mar 17, 2020
Chris Gebhardt replied to CISO Platform's discussion [Please Suggest] Corona Virus: Security advisory for work from home
"The use of a VPN does not create a secure environment.  Many other factors, as noted below in other comments, are required to create a holistic security process.  "
Mar 17, 2020