Party like a rock star

Here we go again…

Chili Cheese Charlie

Another month. Another zero-day. Another opportunity for vendors to push their agenda.

There are two camps when it comes to vulnerabilities. On one side, you have the highly funded, venture-capital backed detection and recovery team (DaRT). On the other side, you have the prevention mindset team (PMT).

It is easy to find out which team your vendor belongs to. Here is a short list of traits you may notice if your vendor is part of the DaRT

  1. They’re first to ring the bell when a new exploit is detected
  2. They are often referred to as experts by trade magazines
  3. They’ll provide “something” for you to do or buy to get through this storm
  4. They speak a lot of doom and gloom and how hard it will be to recover

If your vendor of part of the PMT, you may notice the following

  1. They talk about prevention and how this is just another day at the office
  2. They provide timely and thoughtful analysis and updates should they be necessary
  3. They may provide product updates or configurations to help prevent threats
  4. Doom and Gloom ain’t a thing, it’s just another day at the office

The main problem with prevention is that it isn’t sexy. It doesn’t garner all the attention and funding that recovery does. Like diet and exercise can mitigate many health issues within the human ecosystem, so too can prevention within the Cyber ecosystem.

Unfortunately, much like diet, getting people to buy in to prevention is a difficult thing to accomplish. Now if you’ll excuse me, I need to refill my cola and get a new box of pop-tarts.