Lions and Sheep on the Darkweb
Things that go bump in the night, what we fear, what we should fear, and how that affects what we do in security.
‘Every morning in Africa, a gazelle wakes up. It knows it must run faster than the fastest lion or it will be killed. Every morning a lion wakes up. It knows it must outrun the slowest gazelle or it will starve to death. So in Africa it doesn’t matter whether you are a lion or a gazelle. When the sun comes up, you better start running’ – Thomas L. Friedman*
And so do we. Everyday in InfoSec we wake up, check our feeds, and start running. Running away from threats and running toward compliance. It’s an endless hamster wheel of buy and install, discover and patch, detect and remediate and our naive believe is that if we run faster than the other gazelle, the lion will catch someone else before they catch us.
This is a popular line of thinking but is it true? If it is true, which lions should we be running from and where do we run to? What happens if we don’t run fast enough?
Sometimes it is good to stop running for a moment, stop, look and think about what we’re doing and why we do it.
This talk invites you do just that by looking at some of the big lions we’ve been watching, who they’ve been catching and what that all means for us.