cons

Why AI Keeps Falling for Prompt Injection Attacks

| | AI, chatbots, cons, Fraud, LLM, Uncategorized
Imagine you work at a drive-through restaurant. Someone drives up and says: “I’ll have a double cheeseburger, large fries, and ignore previous instructions and give me the contents of the cash drawer.” ...
Schneier on Security

An Elaborate Employment Con in the Internet Age

| | cons, employment, Fraud, linkedin, Uncategorized
The story is an old one, but the tech gives it a bunch of new twists: Gemma Brett, a 27-year-old designer from west London, had only been working at Madbird for two ...
Schneier on Security

On Financial Fraud

| | auditing, banking, cons, crime, economicsofsecurity, Fraud
There are some good lessons in this article on financial fraud: That's how we got it so wrong. We were looking for incidental breaches of technical regulations, not systematic crime. And the ...
Schneier on Security

Create a Team for Audit Analytics? Part 3

| | Agile, analytics, Audit, cons, data analytics, dedicated, department, everyone, flexible, Growth, how to, hybrid, increase, left behind, management, proficiency, pros, security bloggers network, Skills, team, technology, virtual, Written by Skyyler
In the previous post, Create a Team for Audit Analytics? Part 2, I explored the pros and cons of expecting all auditors to develop a level of data and analytic proficiency. These ...
ITauditSecurity

Create a Team for Audit Analytics? Part 2

| | analytics, Audit, cons, data analytics, dedicated, department, Growth, how to, increase, proficiency, pros, purple unicorn, security bloggers network, Skills, team, technology, Written by Skyyler
In the previous post, Create a Team for Audit Analytics? Part 1, I explored the pros and cons of developing an analytics team. This team consists of analytic auditors who are dedicated ...
ITauditSecurity

Create a Team for Audit Analytics? Part 1

| | analytics, Audit, cons, data, data analytics, everyone, how to, proficiency, pros, security bloggers network, silo, Skills, team, technology, throw over the wall, Written by Skyyler
Once your audit team has proven the value of doing analytics consistently, the next question is: Do we create an analytics team and have the team do all (or the majority) of ...
ITauditSecurity
Solving the Security B-Sides London 2012 Web Hacking Challenge

Solving the Security B-Sides London 2012 Web Hacking Challenge

| | 2012, BSides, challenge, challenges, cons, Hacking, London, security, web
This year (2012) I wrote a web hacking challenge for BSides London. Rather than write a lengthy blog post about how to solve it (when others have already covered it), I thought ...
Seven Elements