Brian in Pittsburgh · May 14, 2021 · 4:00 AM UTC

Brian in Pittsburgh

Brian in Pittsburgh @arekfurt

14 May 2021

Would you believe me if I argued that without those standards and requirements (which are generally few and modest compared to what is the case in virtually all other industries) things would be even worse?

Jeremiah Grossman @jeremiahg

13 May 2021

~20 years of InfoSec security standards and compliance audits, exceeding $120B in annual spend, and the result is essentially everything to be hacked all the time — and getting worse. Forgive me if the well-indended WH EO calling for more regs and audits doesn’t excite me.

Jeremiah Grossman · May 14, 2021 · 3:17 PM UTC

Jeremiah Grossman @jeremiahg

14 May 2021

Everyone could have gotten hacked for much less money.

Bil Corry · May 14, 2021 · 3:58 PM UTC

Bil Corry · May 14, 2021 · 3:58 PM UTC

Bil Corry @bilcorry

14 May 2021

Replying to @jeremiahg @arekfurt

The model is backwards. Put a flag in your system that an attacker can set for a monthly payment, and THEY have to keep everyone else out while allowing the business to operate, otherwise the next attacker could change the flag and collect the payment.

May 14, 2021 · 3:58 PM UTC

Jeremiah Grossman · May 14, 2021 · 6:41 PM UTC

Jeremiah Grossman @jeremiahg

14 May 2021

Replying to @bilcorry @arekfurt

Create a 12 slide PPT deck, raise some VC cash.

Bil Corry · May 14, 2021 · 7:45 PM UTC

Bil Corry @bilcorry

14 May 2021

Cyber King of the Hill, LLC brings gamification to ransomware. Are you the baddest ransomware crew? Prove it and earn a monthly payout each month.