Comments on: Blog Tag: Top Ten Security Predictions for 2007

By: Charleen Charpia

Charleen Charpia — Tue, 22 Dec 2009 20:09:39 +0000

Thank you for the sensible critique. Me and my neighbour were just setting up to do some research about this. I am very grateful to see such great information being shared freely out there.

By: On UIS (CRS) Security « Princess of Antiquity

On UIS (CRS) Security « Princess of Antiquity — Sat, 24 Mar 2007 06:14:57 +0000

[...] (a new version(?) of what used to be the Computerized Registration System). It reminded me a lot of my security predictions for 2007. Heck! They just made my prediction This is a good example of a release that is not even alpha test [...]

By: Serious CISCO Vulnerability « Princess of Antiquity

Serious CISCO Vulnerability « Princess of Antiquity — Thu, 25 Jan 2007 04:25:44 +0000

[...] Pretty damaging, if you ask me. Kinda reminds me of one of my predictions… [...]

By: abbi

abbi — Fri, 12 Jan 2007 19:07:35 +0000

@Mike Murray: Thanks.

I want to hope that none of these will come true. Although something tells me that that would be optimism to the point of foolishness.

@Jun: I saw the list.

So true. I agree, we really need to educate the users and put the right people in the right position.

@technews: I hope you received my e-mail.

By: technews

technews — Fri, 12 Jan 2007 06:08:44 +0000

How do I contact you?

By: Jun

Jun — Fri, 12 Jan 2007 05:38:08 +0000

meron na prediction sa ISAW

By: Mike Murray

Mike Murray — Wed, 27 Dec 2006 15:06:22 +0000

Well, that was depressing, Abbi. I’m going to go hide under my desk now.

In all seriousness, this is a really great list.

I wasn’t aware of the defacements either. And that quote from SecurityAbsurdity was brilliant.

By: abbi

abbi — Wed, 27 Dec 2006 08:13:03 +0000

The mere fact that their site were defaced, it lost them a couple thousands of dollars even if it was only for a few hours. And for these reason, they are paying the extortionist for a hundred bucks or so. And besides, they don’t really publicize these things.

By: Alex

Alex — Sun, 24 Dec 2006 13:19:19 +0000

“8. More Web Apps Vulnerabilities. Mercedes Benz, Fuji Film, Panasonic, US Navy, US Army, Greenpeace, Coldwell Banker, Microsoft, Google, Standford Electric, the National Oceanic & Atmospheric Administration, The SCO Group, the National Weather Service, Stanford University, SANS Institute, Symantec, Mcdonalds, Sandia National Laboratories, the U.S. Geological Survey, Bottom Line Technology, Association of Chief Police Officers, Midwest Express Airlines, the Space and Naval Warfare Systems Command, the Office of Secretary Defense, the Defense Logistics Agency, NASA Jet Propulsion Laboratories, Department of Education (Philippines), Department of Science and Technology (Philippines)…. what do all these have in common? Their web site were recently defaced. This year alone, there have been a staggering number of exploits in vulnerabilities of E-bay, Yahoo! Mail, Google’s Gmail, MySpace among others. We might even see the number case of identity theft going higher.”

You know what’s interesting about the above? I wasn’t aware of most of these defacements. If I’m not alone in my ignorance, wonder what that means to the executive perception of the risk surrounding web defacement…