DEFCON and Black Hat are two prominent hacking conferences that come around each year. And each year we hear the news outlets gush over the next “ground breaking” hacking attempts that will shatter our lives forever. We hear how hackers are going to crush the confidentiality, integrity and availability of our data and destroy modern society. Really? We’ve had the BlackHat conference for a few years now, 17 actually. I’m pretty sure society has been moving along ok each year since then.
Let’s put this into perspective. Information security is all about risk. We each take risks every day. We drive or ride a motorized vehicle to work, we eat foods we didn’t grow or prepare, we use sharp blades to shave hair off our face…you get the picture. Risk is everywhere. We take precautions to lower our risk like drive the speed limit, wear safety gear at work, buy insurance and many other activities. Information security is no different. We face the risk and then take certain precautions to lower the risk that a hack will occur or at least lower the impact if it does occur.