“Everybody has HPV, okay? Everybody has it. It’s okay. Come out already. Everybody has it. If you don’t have it yet, you go and get it. You go and get it. It’s coming.”Ali Wong – Baby Cobra
So, said a very pregnant Ali Wong (with impeccable comic timing and a flawless delivery) during her hilarious stand up routine, “Baby Cobra”. But despite the raucous applause from the captive audience, the fact is that global trending around Sexually Transmitted Diseases (STD) are no laughing matter.
According to a report from the Centres for Disease Control and Prevention (CDC), STDs have been on the rise for the 5th consecutive year. In 2017, a record-breaking 2.3 million new cases were reported in the USA. Why are there so many more new cases of preventable sexually transmitted infections? Experts cite numerous factors (lack of condom use being the most obvious), but the one I like to put forward is indifference.
It seems that people just don’t seem to care enough to bring themselves to take the necessary measures to inconvenience themselves and ensure that they are safe. This indifference extends equally well to how some across the IT landscape treat their Security. It seems that IT Security is thought of in the same way as an STD; in that people are prepared to wear the risk of infection over undertaking the necessary measures (and inconvenience) to prevent it.
That may be perceived by some to be a harsh and overly simplistic statement, as many
The security layers normally deployed to protect
Just how thin are these veneers of security being stretched? Let me cite some very public breaches from 2018 to illustrate the point (in no particular order):
- Federal Group Hotel – November 2018
- Under Armour’s MyFitnessPal App – November 2018
- Austal – October 2018
- Perth Mint – September 2018
- RCR Tomlinson Engineering – August 2018
- Strathmore Secondary College – August 2018
- Airport Security Identity Cards (ASICs) – July 2018
- MY Health Record – July 2018
- Townsville City Council [Typeform] – July 2018
- Timehop App – July 2018
- Cairns council hit by data breach [Typeform] | July 2018
- PEXA – National e-conveyancing platform – July 2018
- Australian National University – July 2018
- Airtasker – July 2018
- Bakers Delight – July 2018
- Tasmanian Electoral Commission – July 2018
- Ticketmaster – June 2018
- HealthEngine – June 2018
- Flightradar24 – June 2018
- PageUp People – June 2018
- MyHeritage – June 2018
- Family Planning NSW – May 2018
- Svitzer Australia – March 2018
- GoGet – January 2018
Now in many of the above
These breaches via elevation of privilege, would not have occurred in a single attack operation. The attackers would have been covertly present outside and inside the
Once the high privilege cycle is in place, the search for and exploitation of key assets within the
- Microsoft Advanced Threat Protection – To monitor identity lateral movement and highlight anomalous activity across the network
- Azure AD Premium – Challenging identities with multi-factor authentication and mandating that conditional access requirements be satisfied prior allowing access
- Azure Information Protection – Protecting the key data sets and files themselves from inappropriate access or manipulation
The key to a strong security framework is to ensure that you have security checks and screens in as many layers of your operation as possible.
Having your IT security screens potentially compromised has now become an ever-increasing possibility for most
Have we all just accepted the risk and or inevitability of infection and traded it for convenience and flexibility?
Personally, I think that you can enable flexibility and convenience but experience it within a very strong ring of security. It doesn’t take much more effort or cost much to have it both ways. In many instances,
Although I love Ali Wong’s
These simple measures will ensure infection risks are lower and even if you do “get it”, symptoms can be identified early and consequences kept to a minimum.
In conclusion, don’t be indifferent with your security and you will be having the last laugh on infection…Sorry, Ali!