The Black Hat and DEFCON events bring together the black, white and grey hat communities to share information about what’s really what when it comes to information security. Thycotic surveyed attendees at this year’s Black Hat conference to find out what works and doesn’t work when it comes to protecting data.
According to the survey results [PDF requires registration to access], privileged accounts are the most preferred way to access systems with access to email accounts and physical access to a computer the next most popular.
Unsurprisingly, end-point security software and firewalls are largely seen as irrelevant with humans the biggest reason other security controls fail. The challenges for humans are the need the constantly update software and update passwords – something that is leading to security fatigue.
Thycotic surveyed about 250 conference attendees with just over half identifying themselves as whitehats and a third saying they were greyhats.
None of the findings are particularly surprising. I’ve been saying for a while that no recent attack has been blocked by traditional security measures. With the majority of attacks exploiting ports 80 and 443, firewalls are little more than open sieves that channel traffic rather than stop anything.
If I was going to use the results of this and other similar surveys, I’d be looking at the threat landscape of today and questioning whether the security measures developed and deployed two decades ago are relevant to today’s world.