Re: [iwar] [fc:Most.troubled.by.net.security]

From: steve_hosie@mech.disa.mil
Date: 2002-01-02 12:55:48


Return-Path: <sentto-279987-4185-1010005075-fc=all.net@returns.groups.yahoo.com>
Delivered-To: fc@all.net
Received: from 204.181.12.215 [204.181.12.215] by localhost with POP3 (fetchmail-5.7.4) for fc@localhost (single-drop); Wed, 02 Jan 2002 12:59:07 -0800 (PST)
Received: (qmail 6620 invoked by uid 510); 2 Jan 2002 20:58:20 -0000
Received: from n12.groups.yahoo.com (216.115.96.62) by all.net with SMTP; 2 Jan 2002 20:58:20 -0000
X-eGroups-Return: sentto-279987-4185-1010005075-fc=all.net@returns.groups.yahoo.com
Received: from [216.115.97.189] by n12.groups.yahoo.com with NNFMP; 02 Jan 2002 20:57:55 -0000
X-Sender: Steve_Hosie@mech.disa.mil
X-Apparently-To: iwar@yahoogroups.com
Received: (EGP: mail-8_0_1_3); 2 Jan 2002 20:57:54 -0000
Received: (qmail 25670 invoked from network); 2 Jan 2002 20:57:53 -0000
Received: from unknown (216.115.97.172) by m3.grp.snv.yahoo.com with QMQP; 2 Jan 2002 20:57:53 -0000
Received: from unknown (HELO mml.mech.disa.mil) (207.133.5.134) by mta2.grp.snv.yahoo.com with SMTP; 2 Jan 2002 20:57:53 -0000
To: iwar@yahoogroups.com
X-Mailer: Lotus Notes Release 5.0.1a August 17, 1999
Message-ID: <OFF260A632.38035155-ON85256B35.007176E1@mech.disa.mil>
X-MIMETrack: Serialize by Router on DACMM01/DACMech(Release 5.0.6a |January 22, 2001) at 01/02/2002 03:57:40 PM
From: steve_hosie@mech.disa.mil
X-Yahoo-Profile: s_hosie
Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com
Delivered-To: mailing list iwar@yahoogroups.com
Precedence: bulk
List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com>
Date: Wed, 2 Jan 2002 13:55:48 -0700
Subject: Re: [iwar] [fc:Most.troubled.by.net.security]
Reply-To: iwar@yahoogroups.com
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit


What is truly amazing, is how many people who are online and connected from
their homes do not have a firewall in place.  One of my stand alone "other
machines" we have at home, while connected via a modem to AOL was attacked
15 times within a 30 minute time period, attempts to place trojan horse's,
etc. on the machine.    On DSL and Cable modem's it has been far worse than
that, perhaps only because those connections are somewhat permanent in
nature.

People can be concerned about their internet and computer security, but
until they take positive steps forward such as correctly installing
firewall and virus checking software their stored information as well as
typed information will remain as unsecured as their unlocked auto (full of
presents) would be during Christmas at the worlds largest shopping mall.

It seems odd that so many are connected these days, but remain so without
knowledge or understanding of the risks without proper firewall and virus
protection.

In the business world we are aware of the risks, last year the estimate
cost was nearly 17 billion dollars.  That cost does not include "secrets"
which were taken from business or private individuals, but mostly the cost
of cleanup and resolving issues caused by various virus infections.

With that all in mind, how do we as professionals raise this issue and
provide more solutions to the at large public ?  With net results being a
reduction in cost to our businesses and clients for resolving future issues
caused by lack of network and personal machine security.


Respectfully,
Steve Hosie, CISSP, CISA




                                                                                              
                    Fred Cohen                                                                
                    <fc@all.net>         To:     iwar@onelist.com (Information Warfare        
                                         Mailing List)                                        
                    01/02/2002           cc:                                                  
                    01:37 PM             Subject:     [iwar]                                  
                    Please               [fc:Most.troubled.by.net.security]                   
                    respond to                                                                
                    iwar                                                                      
                                                                                              
                                                                                              




Most troubled by net security
Barbara Gengler, News.com.au, 1/2/2002
<a href="
http://news.com.au/technology_story/0,6257,3516222%255E15318,00.html
">http://news.com.au/technology_story/0,6257,3516222%255E15318,00.html>

MORE than 70 per cent of Americans say they are concerned about internet
and computer security, according to a recent poll.

Another 74 per cent expressed fears that their personal information on
the net could be stolen or used for malicious purposes, according to the
results of a national poll released by the Information Technology
Association of America (ITAA) and managed secure communications
specialist, Tumbleweed Communications.

An equal number said they were concerned that cyber-attacks could target
critical infrastructure, such as phone networks or power plants.

The poll, called Keeping the Faith: Government, Information Security and
Homeland Cyber Defense, is based on a telephone survey of 800 adults on
November 26 and 27, conducted by Luntz Research.

Seventy four per cent of the respondents expressed worries about
terrorists using the internet to launch cyber-attacks against critical
infrastructure. Thirty-seven per cent said they were very concerned
while another 37 per cent said they are somewhat concerned.

The poll found that despite the fears, respondents failed to register
major changes in online behaviour as a result of the September 11
attacks or The War on Terror.

While only 17 per cent said they had complete faith in the ability of
the US government to prevent cyber attacks against agencies, 54 per cent
said they had some faith. Only 17 per cent said they had very little
faith.

ITAA spokesman Bob Cohen said the group was surprised by the level of
concern that respondents expressed about attacks on critical
infrastructure.

"We think it's notable that the public retains confidence that the
federal government will be able to assure the security of its
information systems and does not appear to be particularly troubled by
the possibility of unwarranted government surveillance," he said.

Few in the survey said they were concerned that in the post-September 11
environment their email would be subjected to government sleuthing and
only 10 per cent said they were a lot more concerned about federal
authorities monitoring or reading their email, while 14 per cent said
they were somewhat more concerned.

Only 5 per cent said they found themselves using the internet more for
updates and information, while 34 per cent said their usage had stayed
the same. Seven per cent said they use the internet a lot less since the
September 11.

Even with the Anthrax scare, email has not become a replacement for
paper mail. Fifty-five per cent said their use of email had not changed,
while 35 per cent said they did not use email. Only three per cent said
they had made a significant shift to email to avoid paper mail.


------------------
http://all.net/

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/






------------------------ Yahoo! Groups Sponsor ---------------------~-->
Tiny Wireless Camera under $80!
Order Now! FREE VCR Commander!
Click Here - Only 1 Day Left!
http://us.click.yahoo.com/WoOlbB/7.PDAA/ySSFAA/kgFolB/TM
---------------------------------------------------------------------~->

------------------
http://all.net/ 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 



This archive was generated by hypermail 2.1.2 : 2002-12-31 02:15:02 PST