Andrews Apologetics

Why is it….

  – that people that leave their cars running at the convenient stores when going in for a cup of coffee or libation, are shocked when their cars are stolen? [talk about a new twist for criminal drive through?!]

- that people send money to someone they never met but who email a solicitation for money transfers? [like they 1. know you, and 2. are going to give you money for nothing!]

- there are some that believe that NO one will want to hack our systems at work because we are a “friendly” company. [read free target!]

- there are people who think that their home systems are out of the purview of people wanting to drop malware on ANY system that responds? [You DO turn you DSL/cable box off and have proper protection, right?!]

- we are shocked when new threat emerge? [see next one to tie into this]

- we are shocked that we need [and need to pay FOR] protective tools [a/v, firewall, etc] and need to keep them up to date? [ really.  do you think that there is a silver bullet out there?!!!]

 Just ranting I guess, but I find it amazing that people are out there that think this.  P.T. Barnum can be quoted here… but I won’t. 

 …last one -

Why is it, that I am shocked that people like this exist.

OK. A bit dramatic for a title, but it sounds too much like an add on TV.  If you wait long enough, you get the free vacuum attachments and a double order of something that doesn’t work when you get it.

“So Andrew, what does this have to do with security??”  you ask.  (funny how you read my mind)

We all would like the latest and greatest in security technology, and yet sometimes what we have is never being exploited for its full capability.  During my speaking tours, I hear people telling me that they are abandoning their product for another brand because “it did not protect me”.  I ask those folks what have you turned on with those products that has made you dissatisfied? 

 Did you turn on the auto-update feature? “no” 

 Did you turn on all the anti-malware features? “No” 

Did you enable the learning features to help identify, and hopefully block some of the aggressive threats? ” NO…that is too intrusive!!”     I see.  

So you don’t follow manufacturers recommendations, nor the industry recommendations to enable aggressive protection, and you don’t even inspect everything that comes into your networks.  Got it.

Well, some folks will never learn, and blame the vendor or product(s) for their lack of configuration.  There is no satisfying these folks when things get rough because of an action (or lack thereof) they had done.  It seems that when they switch a product out, it is for self preservation reasons (aka Job security) rather than for valid technical reasons.

 What I recommend is this (before something happens!):   Exploit your vendors for all that they are worth.  Really!  That is what they are there for.  That is why you bought the package with a support contract (you DID buy one didn’t you?!).  They are there to help you maximize your experience, value, and protection capabilities with that technology to its fullest capability. 

Too many times I have heard people complain and state “We keep in touch with the vendor when it is renewal time” …. WHAT?!!  Shame on you!  Either things are working VERY well – in which case you should be getting updates and briefings from your vendor at least quarterly on security,  or things are VERY bad and you tried to “fix” it yourself and got too frustrated, or your management is looking to point a finger somewhere (if so look back two paragraphs – as Jeff Foxworthy says “here’s your sign”). 

 Really, if you get a great deal on something – USE it!  Make sure you educate yourself and your team and get the technology configured and tuned to work for you, not the other way around.   (Let’s not EVEN discuss the need to patch the OS and other reliant software)

If you have configured it properly, and have either reached the full capability on the technology and need more – then it would make sense in looking for new(er) technology that can scale, provide better features, protect you better, <*insert condition here*>. If you are ready to throw something out – do you have the latest available version, enabled all the possible protection, and check with the vendor?

 I have seen and heard a lot of this lately, and just like the TV adds – I’m not buying it.  Vendors now have the ability to show their solutions over the Internet, in a sandbox environment.  Vendors have engineers that can show you tips and tricks.  Manufacturers have training sessions and classes for their products (which if you negotiate properly can get this thrown into the contract or cost – no, it’s not free – nothing in life is, but it is a great way to get education in without the political strife from your management).   You have to employ these tools to maximize your experience with the technology. 

 For what it’s worth – I’m waiting for the set of knives and the two-fer offer before I jump!