Spafford comments on RSA breach

Eugene Spafford tells Federal News Radio that, typically, it’s impossible to tell how long a breach has been going on.

Web Intelligence for Information Security Workshop - Lyon, France

A Recent Interview, and other info

Complexity Is Killing Us: A Security State of the Union With Eugene Spafford of CERIAS

Purdue Awarded $1 Million for Cyber Security Scholarships

Spafford Receives Lifetime Achievement Award

Spafford comments on AT&T iPad hacking

“Having email addresses by itself is not much of a threat: people give them out all the time, and spammers can and do guess them easily,” said Eugene Spafford, executive director of the Center for Education and Research in Information Assurance and Security at Purdue University.

“It is more an issue if you can pair addresses with places of employment, such as government agencies,” he added. “Then it becomes possible to collect further information, and perhaps get a toehold into Google, Bing or other information sources.”

2 Winona State Students Are Suspected of Involvement in Large-Scale Cybercrimes

U.S. Government, Businesses Are Poorly Prepared for Cyber Attacks, Experts Say at AAAS

Spafford said academic specialists have been warning for more than 25 years about vulnerabilities in computer systems that can lead to identify theft, credit card fraud and other security intrusions.

Battling Cyber Threats

Computer security experts say the United States faces a radical shortage of highly skilled cybersecurity professionals who can prevent and combat cyber attacks. One federal official has estimated that there are only 1000 cybersecurity experts in the United States who have the deep technical knowledge required to safeguard national security; tens of thousands are needed, he believes.