Email Security 101

At MISTI in 2013 I was on the closing panel with Alex Hutton (at the time CSO of Zions Bank) and Chris Nickerson (a “red teamer”) – the topic was the distressing state of internet security. Hint: it’s distressing. Somewhere in the course of the panel I decided to do a “show of hands poll” and asked everyone in the room:
How many of you use the google 2 factor authentication on your gmail account?

[Read more…]

Hillary Clinton’s Email Server – Some Things

One of my commenters in another posting, asks:

What do you think of the notion, given the incompetence of the government in keeping hackers out of their computer systems, that The Secretary’s private email system might actually been no worse than the State Department’s system, which, apparently, is known to have been hacked into?

As I understand it, the FBI has no evidence that her private system was, in fact hacked but they, apparently, do have evidence that the State Department’s computer system was invaded by hackers (as by the way as has the Pentagon’s).

There are a lot of issues to cover and I’m going to jump on some of them scatter-shot, then see if I can conclude with a summary of my views, along with some supporting facts.*

[Read more…]