Great coverage here of the story by Patrick Gray at Risky.Biz Podcast 155.
- The Google vs MS vuln stuff is funny. “People in glass houses…..”. I like this post at RSnake’s Blog. Covers it well but follow some of the comments where it gets more interesting.
- What’s the Australian Government doing now? ISP’s to cover browsing history? From ZDNet and Ben Grubb. I think there’s more to this story and I’m doing some research on it. Just doesn’t click in reference to some things.
- #OwaspGate has been a laugh….if you’re not following some of local Infosec guys on Twitter, you’re missing out. I know, it’s serious also but…
- AusCERT and the Government CERT part ways after a courtship gone wrong as reported here by AusCERT. Lots of “AusCERT” mentions. Not so many “CERT Australia” mentions. Yawn……#AusCERT….few really give a rats to be honest. Put something together that gets into the industry’s critical path and you may get more supporters. (And not just a conference). Take that as constructive criticism and not Draz again having a go. “Why does Draz hate us?”. I don’t! I could be your biggest supporter guys.
- One of my favourite local bloggers, Jarrod Loidl, and who posted here recently, responds to my post on Commoditising Specialist Penetration Testing Services. Nice post and I think we’re pretty much on the same wavelength for most.
I’ve got a close mate. He works for a large US/Global “security” vendor. I may have mentioned him before.
He’s been working in the security industry for 10 years. (Sales).
He doesn’t know anyone we know in the security community. Never has. Never had a need to. Can’t see a reason to.
What he sells is the best! He tells me. He tells his clients. They buy from him.
He gets disenchanted with his company and moves on every 2 years.
Now the new company sells the best shit! He tells me the last place was the worst and their offerings were crap.
Goto 2 sentences above.
He tells me the company “doesn’t care about security”. He doesn’t care. He’s honest….with me. “Meet my targets and life is good!”
You’ve probably met him. He’s a top bloke. You’ve probably bought from him because his stuff is the best.
He doesn’t care I post this stuff. He doesn’t read my stuff. Why would he?
He knows it’s here and it doesn’t stop us sharing a beer or 10.
Securus Global is again looking for new people to join our team. Information here. (Not all the roles this time will require the same level of experience, as we are also looking to train the right people who have attained a certain level of expertise and experience to date).
With our range of clients and the types of work we are engaged to do, we believe very few other organisations can offer Information Security people in Australia, (with an interest in penetration testing, research and developing their technical expertise), the same challenges and diversity of work.
If you have applied in the past, please don’t let this stop you applying again as we don’t generally go through previous CVs given the amount that we receive.
- I wonder how Minister David Campbell’s police investigation into the SMH hackers is going. I never knew the SMH hired hackers but hey, some of those journos are dark horses when it comes to technology. Over at un-excogitate.org, 4 great minds have proposed a solution.
- My favourite posting in recent times. The ACS recommends males over 45 as mentors for women in IT. LOL. Have enjoyed the banter over this one on Twitter. Please no ACS responses….unless they are witty.
- Jarrod over at /dev/null has created Wall of Shame postings. Support the local bloggers. Have a read and post your thoughts to Jarrod.
- Patrick at Risky.Biz has a story today on “Ex Sourcefire employee goes rogue“. “Wake up your f–king idea!” LOL…
- 2010: There’s still companies out there that think their industry is stupid. (Not infosec). If you’re going to create an “industry” discussion forum (supposedly independent), seed it with posts and responses from anonymous users that talk about how great your business is and how bad your competitors are, at least be smart enough to ensure that the domain name registration information doesn’t give you away! One of the dumbest websites I have seen in years. Sadly, they’re not getting the hint and I can see it ending badly for them.
- There’s been a few updates to the Australian Information Security Bloggers Directory. If you wanted to be added to the list, please let me know.
- Follow me on Twitter: @ddrazic. (Can’t guarantee anything of quality).
We’re looking for people again. Check out the role advertisement. If you think you fit the role description and want to join one of the region’s best and fastest growing security companies, give us a yell.
Just a note: while we are open to overseas people applying, and we have recruited OS before, having a work visa or the like for Australia is preferred.
Unless we officially approach you to work with us, ie; approve you to go out and look for candidates, please don’t go out and approach people who you think we might like to fullfill roles that we advertise. This doesn’t look good upon you. We don’t support random headhunting of people.
Securus Global Team
In my day to day, I read blog after blog and most of the ones that I have bookmarked are all I need to keep up with the latest in IT Security news. I rarely now ever read an IT news site unless it’s linked from a blog I read (or to be fair…..Twitter). This Web 2.0 business has substance. I hate the term but love the delivery. (FFS most IT news sites are not worth it anymore (not that many were before), when the bloggers and twitters provide the news quicker!). Anyway, back to the off topic:
The Protect Jerrys Plains blog is one of the best examples of Web 2.0 in action I have come across. Yes, it is run by a friend, Big Galoot, Craig Chapman, and yes, probably the only reason I know about it. But, it’s a gem!
I highly recommend the read. There’s not many entries but if you want to see Australia’s version of Erin Brockovich in action, this is it. It is a soap opera of big business and NSW government games at their best. Read how some make millions from nothing and how a community is spun on the concept of “supporting” individuals and big business making squillions. It reads like a daytime drama, but it is what a community and NSW taxpayers are copping while at the same time being convinced they’re getting something! It’s still going on…..keep reading….logic tells you that someone will someday soon get into trouble!
Web 2.0 – If the Jerrys Plains community did not have this, you have to wonder where they may be?! It still may end bad but at least there will be a record of how it got there and one day, someone may decide to make the players accountable. Go Big Galoot!
Thanks D: http://bsdosx.blogspot.com/
This guy wasn’t “consulting” with me when he did this :
The greatest and all time best management book is: “The Dilbert Principle” by Scott Adams. Since its release, it has been mandatory reading for all staff!….It is the only one worth reading!
As a business dude, that is 99 books I will not read…when the greatest is snubbed!