security memetics

if you sell cameras...

2008-11-20T22:03:00.001-05:00

if you sell cameras full of classified photos on ebay then you might be a security idiot...

(inspiration)

the clever little msn user

2008-11-19T22:21:00.004-05:00

i was talking to someone briefly this evening about a computer related (though not security related) topic... i have to state up front that this person is not a tech-savvy user, this is someone who needs to have most of her system set up for her, and someone whom i have not regaled with tales of the weird and wild world of internet security...

that being said, after she was satisfied with the explanation i'd given her as to why wifi in a laptop wouldn't work without a wireless access point she related a story to me about something she'd encountered (and will likely continue to encounter for a while - you'll understand why in a minute)... she tells me that she understands that when she turns her computer on msn starts automatically but it doesn't try to connect to anyone else until she specifically clicks on a contact... she also comes to the quite logical conclusion that the same should be true for her contacts... apparently one day while she was on the computer an msn window popped up with a message from one of her contacts - a contact, furthermore, whom she wanted to talk to by phone (since she's somewhat older and that's easier for her)... so she called her friend up and had an exchange not unlike the following:

user : so i see you're online.
friend: no i'm not.
user : what, did you just turn on your computer or something?
friend: ... well yeah, but i'm not online yet.
user : well, that's not what this window on my computer is telling me.

what she told me next really surprised me... she figures her friend's computer must be infected with something and that something is sending out instant messages to all their contacts as soon as her friend turns on their computer... apparently her friend has not been able to get rid of the infection and so continues to send out these instant messages but this person i'm talking to, having figured out the messages with links in them that she's getting from her friend are no good, just closes the msn window when such messages pop up...

imagine that, an otherwise hapless computer user who much by accident figures out how to correctly detect an IM worm (without even knowing what an IM worm is) by confirming whether the supposed sender actually sent it, and manages to safely avoid getting infected herself...

if you hand out your credit card details...

2008-11-18T21:51:00.000-05:00

if you hand out your credit card details over the internet in order to find out if your credit card details are on the internet then you might be a security idiot...

(inspiration)

if you think a conventional warfare...

2008-10-06T12:00:00.000-04:00

if you think a conventional warfare concepts can be applied directly to computers/networks, you might be a security idiot...

(inspiration)

if you think av...

2008-10-03T12:00:00.000-04:00

if you think av has to be able to stop all threats in order to do any good then you might be a security idiot...

(inspiration)

if you think the law...

2008-10-02T12:00:00.000-04:00

if you think the law can solve your email security problems then you might be a security idiot...

(inspiration)

if you think disabling fire hydrants...

2008-10-01T12:00:00.000-04:00

if you think disabling fire hydrants is a way to fight terrorists then you might be a security idiot...

(inspiration)

if you inspect an aircraft...

2008-09-30T12:00:00.000-04:00

if you inspect an aircraft by using it as a jungle gym, you might be a security idiot...

(inspiration)

if you get caught cracking...

2008-09-29T12:00:00.001-04:00

if you get caught cracking the computer system for an amusement park then you might be a security idiot...

(inspiration)

yet another information security cartoon

2008-09-27T16:48:00.002-04:00

looks like didier stevens is getting in on the security cartoon craze, and this first one is pretty interesting...

while we're on the subject of sending our cyber-trash into space, however, why aren't we sending spam into space? surely there are beings out there that would be interested in making their tentacles larger and firmer? or perhaps some that want to be able to produce a greater volume of slime?

oh, wait, i know why we don't send spam into space - getting black holed in that context would suck...

if you leave details...

2008-09-11T12:00:00.000-04:00

if you leave details of military training ops on the floor of a nightclub then you might be a security idiot...

(inspiration)

new(ish) meme: priceless

2008-09-10T23:34:00.002-04:00

you may have noticed that the previous two visual gags posted were based on the same original screenshot... when i asked graham cluley how he felt about making it into a lolthreat i hadn't yet thought up a caption (in fact, i thought perhaps graham would suggest one)... as i deliberated on what to put in the caption i realized that the caption i really wanted to add wasn't a LOL caption at all, but a priceless one (if you haven't seen pictures riffing on that old mastercard 'priceless' commercial then you must have been living under a rock for several years)... there was an awful lot to work with in the original image (and it was already sort of LOLish), you see, and i didn't really think i could do it justice with just a LOL caption...

i'm still not sure which is funnier though, so i posted them both... what do you think? im in da man's intarwebz or priceless defacement?

priceless defacement

2008-09-10T23:32:00.001-04:00

with permission from graham cluley

im in da man's intarwebz...

2008-09-10T23:28:00.003-04:00

with permission from graham cluley

if you use shredded cheques...

2008-09-10T12:00:00.002-04:00

if you use shredded cheques as packing material then you might be a security idiot...

(inspiration)

if you don't get that "specially secured room"...

2008-09-09T12:00:00.001-04:00

if you don't get that "specially secured room" means the documents in it stay put then you might be a security idiot...

(inspiration)

if you run some strange tool...

2008-09-08T12:00:00.001-04:00

if you run some strange tool hoping to crack other people's passwords, then you might be a security idiot...

(inspiration)

google chrome comic

2008-09-05T13:58:00.003-04:00

truly, chris boyd is the next randall munroe...

privacy folks, it's more than just curtains and locked bathroom doors...

if you let just anything run...

2008-09-05T12:00:00.001-04:00

if you let just anything run on computers you send into space then you might be a security idiot...

(inspiration)

if you let a single person...

2008-09-04T12:00:00.000-04:00

if you let a single person hold all the keys to the kingdom then you might be a security idiot...

(inspiration)

if you turn a cryptosystem into a paperweight...

2008-09-03T12:00:00.000-04:00

if you turn a cryptosystem into a paperweight by modifying code you don't understand then you might be a security idiot...

(inspiration)

jezuz luvz me, dis ai noe...

2008-09-02T12:00:00.001-04:00

if you think security problems can be solved...

2008-09-02T12:00:00.000-04:00

if you think security problems can be solved, rather than just mitigated to varying degrees, then you might be a security idiot...

(inspiration)

if your little head loses things...

2008-09-01T12:00:00.001-04:00

if your little head loses things your big head was trying to keep secret then you might be a security idiot..

(inspiration)

if you think counting vulnerabilities is the same as...

2008-08-29T12:00:00.000-04:00

if you think counting vulnerabilities is the same as measuring security then you might be a security idiot...

(inspiration)