Tuesday, January 20, 2015

Small Word Security: Security knowledge without all the big words

Small word security: security knowledge without all the big words
Do stories about Raspberry Pi's with Kali Linux and Snort used as an IDS to detect C&C traffic and phishing make your head spin? Then I have good news. A common comment I get from friends and family is that complex security topics give them headaches. They want to know in simple terms how to stay safe in a connected world. Folks like me and my peers have chosen to make a profession out of hacking and defending. I've been doing this for the better part of two decades, so I would hope I have a high degree of knowledge in the field. Others have chosen different paths - paths where I would be lost. I'm just about the last person you would want to perform a root canal on you, or to rebuild your carburetor (well ... I might be able to figure out the latter, but you certainly don't want me working on your teeth!).

Over the next couple of months, tune in here for a new series entitled "Small Word Security." There are many big words and acronyms that would seem arcane to those not in the field. This series will address some of the security challenges that face consumers and businesses alike, and explain real steps you can take to protect your self, both digitally and in the physical world.

Some of the topics you will read about are simple ways to keep your computer up to date and secure; ways to make passwords less of a nuisance; and how to avoid - and recover from - credit card fraud. I'll still write more in-depth articles as I learn new tools, and break and fix devices on my network, but anything tagged "Small Word Security" will be specifically written for those that don't live and breathe hacking.

The "Small Word Security Dictionary" I published a few weeks ago was the first step in this new journey; more "Small Word Security" topics will be posted over the coming months, at the following URL:





Or on Facebook, at