Ilia Kolochenko, CEO of Web Aecurity Company at High-Tech Bridge:
“The great fuss around the Equifax breach exposes our unpreparedness to handle major data breaches in a pragmatic and professional manner. We can observe uncertainty, bias, fear, doubts and anger on all sides of the incident.
“Those emotions are understandable, but in cybersecurity they are a pretty bad ally. We should not forget about the presumption of innocence, and ascertain all the facts before making conclusions or especially accusatory judgements. Someone’s negligence is undoubtedly at fault here, however without a thorough technical investigation, we risk blaming innocent and professional people. For example, do we know how many attacks were successfully repelled by Equifax? Or how many data breaches were suffered in the past and not disclosed? Such scenarios are also possible.
“Some people mock Equifax’s CISO’s music masters degree, however I doubt that many professional cybercriminals have any masters degree at all.
“Therefore I’d refrain from judging someone’s skills only by his or her education. Only a scrupulous and rigorous investigation can point towards the people who should be responsible and liable for this disastrous breach.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.