Weekly Wrap 262: From a birthday to a wake

Surveillance: click to embiggenMy week of Monday 8 to Sunday 14 June 2015 has been another productive one, despite Monday allegedly being a holiday. Thank you, Your Majesty. I’m exhausted.

I also think I’m coming down with a cold, which is hardly surprising. We’ll see.

There’s much I want to talk about, but this very moment I’m at the regularly monthly Poetry in the Pub in Katoomba. I have Sunday Lunch here many weeks. But this month it’s essentially a wake, because one of their number has passed. I’ll admit that I shed a tear as one chap read Henry Lawson’s “The Glass on the Bar”. My whinges can wait for another time.

Articles

There’s also two more ZDNet pieces in the pipeline. They’ll appear in the first half of the coming week, I imagine.

Podcasts

None. The next episode of The 9pm Edict is now scheduled for Wednesday 17 Saturday 20 June.

5at5

There were five editions of 5at5 this week, on Monday, Tuesday, Wednesday, Thursday, and Friday. That’s more than 25 things for you to read! To save me having to tell you this, you could just subscribe.

Media Appearances

Corporate Largesse

None.

The Week Ahead

On Monday and Tuesday, I’ll be finishing off those two ZDNet stories. In theory, I’m also heading in to Sydney on Tuesday for the Optus Business Lunch, to hear the company’s chief executive officer Allen Lew deliver a keynote speech on “how customer behaviours are driving digital transformation” — but with deadlines, that may have to be cancelled. That Sydney trip will definitely be cancelled.

On Wednesday, I’ll be completing an episode of The 9pm Edict podcast. On Thursday, I’ll be writing a column for ZDNet. Wednesday and Thursday are writing days, completing those two ZDNet items, plus a piece for Crikey, plus starting on an episode of The 9pm Edict podcast.

On Friday, I’m definitely doing the long commute to Sydney, to go to a lunchtime briefing by the Wynyard Group on corporate and cyber criminals.

On Saturday I’ll be completing the podcast, and perhaps helping with some, um, engineering work at Bunjaree Cottages. While the rest of the weekend has not yet been planned, the Solstice is on Sunday night — well, for me it’s at 0238 AEST on Monday morning — so I’ll be marking the occasion in some way. How? I’m not sure yet. The same applies to the rest of the weekend, I suppose.

Update 15 June 2015: Edited to reflect the schedule change. Second update, 1620 AEST: Edited to add link to ABC Riverina recording. Update 17 June 2015: Edited to reflect further schedule changes.

[Photo: Surveillance, photographed at Wentworth Falls railway station on 13 June 2015.]

Weekly Wrap 261: Two conferences, two states, many cybers

Sunset on the Gold Coast: click to embiggenMy week of Monday 1 to Sunday 7 June 2015 has been both productive and exhausting, covering two conferences in two states.

It’s a long time since I’ve written five articles in week. It’s at least six months since I’ve done four, which is as far back as I could be bothered scrolling let alone five. But of course, there’s podcasts and other projects that have generated revenue, including random geekery and technical consultancy, so “number of articles” isn’t a fair measure.

Still, this has been one of my most productive weeks in a while. Excellent.

Articles

Podcasts

None. The next episode of The 9pm Edict is scheduled for Monday 15 June, or the day after.

5at5

There were two editions of 5at5 this week, on Monday, and Sunday. To save me having to tell you this, you could just subscribe.

Media Appearances

  • On Monday, I spoke about Chinese ATMs with face recognition on ABC 891 Adelaide.
  • On Friday, I took part in the AusCERT Speed Debate. The Livestream recording has bad audio, so I’ll link to the YouTube version when it becomes available.
  • Also on Friday, I was interviewed by the University of Melbourne student newspaper Farrago. I’ll link to that story when it goes live.

Corporate Largesse

  • On Tuesday, I went to the Check Point Cyber Security Symposium in Sydney, or at least part of it. The goodie bag included a signed copy of Brian Krebs’ book Spam Nation, a Check Point branded notebook, a chocolate from A10 Networks, and of course copies of Check Point’s promotional material. Food and drink were supplied.
  • From Tuesday night through to Friday, I was at the AusCERT Information Security Conference as AusCERT’s guest. They provided return flights from Sydney to the Gold Coast, airport transfers, three nights accommodation at RACV Royal Pines Resort, and of course all the conference food and drink — and there was plenty of that. For taking part in the Speed Debate, I was given a bottle of Jim Barry The Lodge Hill Shiraz 2012 from the Clare Valley. And everybody got a copy of Bruce Schneier’s book Data and Goliath, an AusCERT-branded shirt, and a rather well-made courier bag. From CyberArk: A macaron, delivered creepy-like into my hotel room while I wasn’t there. From Firemon: A branded glass-cleaning cloth. From Mimecast: a keyring bottle opener. From NCC Group: a golden bath duck. From the US Naval Criminal Investigative Service: an NCIS cap — yes, from the real NCIS, not the TV show.

The Week Ahead

Monday is a public holiday for the Queen’s Birthday, but nevertheless I’ll be working. I’ll be writing a feature for ZDNet, as well as returning to Wentworth Falls after a week away.

From Tuesday to Thursday, I’ll be working on another feature for ZDNet, as well as my “regular” column, as well as the running so late it’s embarrassing ebook. I see there’s an Apple keynote at 0300 AEST on Tuesday, so that may feed into something. [It didn’t.] And I’ve got an interview to do on Thursday afternoon.

On Friday, I’ll be heading down to Sydney for a media briefing by Cisco. Friday is another writing day.

I’m not sure how the weekend will go, but I see that there’s Poetry in the Pub in Katoomba on Sunday afternoon. I happened to be there last month, and I thought it might be interesting for The 9pm Edict podcast. We’ll see.

Update 11 June 2015: Edited to reflect the abandoning of the Friday trip to Sydney.

[Photo: Sunset on the Gold Coast, Photographed from the 16th floor of the RACV Royal Pines Resort on 3 June 2015.]

Weekly Wrap 260: Winter is coming

Winter in Katoomba: click to embiggenMy week of Monday 25 to Sunday 31 May 2015 did not unfold as planned, but it wasn’t a complete disaster.

Podcasts

  • “The 9pm Orgy of Confusion”, being The 9pm Edict episode 44. There’s actually a lot more to this episode than this simple entry might suggest. Please listen.

Articles

  • Lessons from a Sydney cryptoparty, ZDNet Australia, 25 May 2015. Quite a few people have said this is a good piece, despite its bland headline, so perhaps you might do me the honour of clicking through and reading it.

5at5

There were two editions of 5at5 this week, on Monday, and Friday. To save me having to tell you this, you could just subscribe.

Media Appearances

None.

Corporate Largesse

None. But this will change next week.

The Week Ahead

On Monday, I’ll be doing various tasks which I am not at liberty to reveal, before heading to Sydney and getting a decent night’s sleep before…

On Tuesday, I’ll be getting up early and heading to the morning sessions of Check Point’s Cyber Security Symposium 2015. In the afternoon I’m flying to the Gold Coast for the AusCERT 2015 Information Security Conference, which runs through to Friday afternoon. I’ll even be taking part in the AusCERT Speed Debatecheck out last year’s — before flying back to Sydney on Friday night.

Then it’s the Queen’s Birthday long weekend, and I haven’t quite decided what happens with that.

[Photo: Winter in Katoomba, photographed on 31 May 2015.]

Weekly Wrap 257

Sydney Central station: click to embiggenMy week of Monday 4 to Sunday 10 May 2015 saw precisely zero media objects being extruded. But let’s not dwell upon that. No, let’s thrill to the possibilities of a glorious future!

Yeah, right.

The Week Ahead

Monday is a day of research and pondering, both for a ZDNet feature I’ve been commissioned to write — and I’ll start referring to that masthead simply as ZDNet from this week rather than ZDNet Australia, finally acknowledging the many months-old fact of the globalisation of their newsroom — as well as a SEKRIT project. Some of this will be done in the warmth of the Blue Mountains City Library, to avoid yet another day of freezing, depressing winds.

On Tuesday, I’m doing the long commute to Sydney for a lunchtime briefing titled “ERP Deployment in Australia: Uncovering Missed Opportunities”, presented jointly by analyst firm Telsyte and sponsor Epicor. I’ll also be doing some location audio recording before taking a late train back to the Mountains.

On Wednesday, there’s more work on the ZDNet feature, plus the completion of the Edict. Thursday will see the emergence of a ZDNet column, I hope, as well as more work on the feature. And Friday is blocked out for work on the SEKRIT project — probably in Sydney, because I’ll need access to internet bandwidth that isn’t billed at the self-sodomising rates of Telstra’s 4G network — but there’ll be writing in between. If that looks jumbled, you’re right. The exact order of play will depend on how things unfold — which I accept is a tautology.

Further Ahead

On Wednesday 20 May, I’ll be doing the long commute to Sydney for a whole series of meetings and briefings. Details in the next Weekly Wrap.

On Wednesday 27 May, I’ll be in Sydney again for Optus Vision 2015, an event that I always get plenty of value from.

From 2 to 5 June, I’ll be covering the AusCERT 2015 Information Security Conference on the Gold Coast — and, at one point, participating in it.

Update 11 May 2015: Edited to add plans for 20 May.

[Photo: Sydney Central station, photographed in the late afternoon of 9 May 2015, in between recording some audio for… a future project.]

Infosec at AusCERT 2013: the media coverage

AusCERT 2013 conference banner: click for conference websiteHere’s a list of the news stories I’ve found this morning that have been written about the AusCERT 2013 information security conference.

The theme for this year’s conference was “This time it’s personal”:

[The theme reflects] the growth in attacks and unauthorised disclosures of online personal information. Motivated by illicit financial gain, cyber criminals obtain unauthorised access to personal information, but more and more, we are seeing data disclosures being posted publicly by attackers for political motives, rather than financial gain.

Hence the theme will resonate within the information security community and remind us that the online environment provides opportunities galore to capture personal information; of the impact these breaches can have on the lives of individuals; and the importance of information security to prevent these attacks. AusCERT2013 will explore these issues and bring experts from Australia and around the world to provide insight and solutions to deal with these challenges.

Items are arranged alphabetically by masthead and then chronologically. If I’ve missed anything, please let me know. Indeed, I daresay that some more articles will be published on Monday or Tuesday, so if that happens I’ll update this post appropriately.

There’s a lot here for me to read, so if I’m going to write a reaction piece some time then it’ll be… later.

Continue reading “Infosec at AusCERT 2013: the media coverage”

AusCERT 2012 and the militarisation of cyberspace

AusCERT 2012 logo: click for conference websiteI didn’t make it to information security conference AusCERT 2013 this year. I’m about to read what’s been written and compile a list — but first, a reflection on what happened in 2012.

When I look back two years to what I wrote from AusCERT 2011, I’m reminded that we were just getting our head around the implications of the Stuxnet worm. Not only was malware being written by organised criminals, and we were facing an explosion of anti-banking malware and mobile malware, and looking ahead to when an angry child might deploy malware against their neighbours — we were now made well aware that malware was also being written by nation states with budgets in the millions of dollars and beyond.

But looking through the list (below) for AusCERT 2012, what jumps out is the emphasis on the militarisation of information security, as well as the emphasis in the scale of criminal activities. I won’t expand on that, because the conversation with AusCERT general manager Graham Ingram speaks for itself.

Articles from AusCERT 2012

Podcasts from AusCERT 2012

  • Patch Monday episode 139, “War talk dominates AusCERT 2012”, the first of two episodes based on material recorded at the information security conference. The overall theme is that infosec is becoming militarised. We no longer talk about “information assurance” but “defensive cyber operations”. Click through for the full list of speakers.
  • Patch Monday episode 140, “Cybercrime: it’s just too easy”, the second of two episodes based on material recorded at the AusCERT 2012 information security conference. AusCERT general manager Graham Ingram explains why cybercrime is here to stay, and F-Secure chief research officer Mikko Hypponen details a complex transnational criminal operation that saw goods bought fraudulently in Denmark being resold in Moscow, as well giving his views on hacktivism and the level to which antivirus companies should cooperate with governments.

Bonus Extra Video

After the conference, my flight back to Sydney was delayed. With the need to kill some time, this video was the result.

My compilation of reports from AusCERT 2013 will be posted later today. My compilation of reports from AusCERT 2013 is now online.