Watching Richard Bejtlich’s recent “Revolution in Intelligence” talk about his government training and the ease of attribution is very enjoyable, although at times for me it brought to mind CIA factbook errors in the early 1990s. Slides that go along with the video are available on Google drive Let me say, to get this post … Continue reading Where is the Revolution in Intelligence? Public, Private or Shared?→
My 2011 presentation on Stuxnet was meant to highlight a few basic concepts. Here are two: Sophisticated attacks are ones we are unable to explain clearly. Spoons are sophisticated to babies. Spoons are not sophisticated to long-time chopstick users. It is a relative measure, not an absolute one. As we increase our ability to explain … Continue reading Was Stuxnet the “First”?→
For several years I have tried to speak openly about why I find it disappointing that analysts rely heavily (sometimes exclusively) on language to determine who is a foreigner. Back in 2011 I criticized McAfee for their rather awful analysis of language. They are making some funny and highly improbable assumptions: … The attackers used … Continue reading How the NSA Can Tell if You Are a Foreigner→
This is not exactly a post I wanted to write. I watched a general reaction to Tom Perkins, however, and felt a serious gap emerging in the news. I started to wonder who would respond with a detailed take-down of his letter. Tom Perkins is obviously wrong to compare himself to Jews persecuted under Nazi … Continue reading On Kristallnacht: Tom Perkins Edition→