Thanks to the FBI for a informative seminar this morning about Cyber Crime, Security, and the impact it's having on their case load and our society at large. Without divulging too many secrets, it was interesting to learn more about what they're seeing out there as it relates to Cyber Security and small businesses. On a lighter note, the day started discussing how the Federal government just got hacked and that our takeaway from today should be from the perspective of "do as we say, not as we do."
The great thing about today's seminar was that it was a for a cross section of people from within the business community. Both CEOs and technology people were both present. So, the questions and discussions ran the gamut from strategic to technical and impacting both business as well as personal computing habits.
While I was able to see their perspective on cyber security from the criminal aspect and hear how others view the concept of cyber security, my biggest takeaway was how on target FPA is with our approach to our security assessment process and security overall. One of THE most important things we agreed on was the need to remove Administrative rights from user desktops and limit the ability of users to have executable access to the user's Appdata folder. This along with two factor authorization can prevent so much of the damage that happens to unsuspecting victims. However, of all the things that impact cyber security the most, we agreed that it all comes down to the human element. Ownership needs to take security seriously and EVERYONE needs to learn how to operate in our brave new world.
That said, they did provide the attached Law Enforcement Cyber Incident Reporting sheet. This sheet provides an abundance of information as it relates to Cyber crime, what to look for, and how to report it to law enforcement agencies. Please download it and feel free to reach out to me if you have any questions. If nothing else, it provides some insight into how our federal government views this issue.