An interesting post from www.social-engineer.org asks whether an attacker with a visible handicap (real or simulated) has an advantage in getting your users to give up sensitive information… the available research seems to indicate that it does… worth a read!

I have emerged from my heavily fortified undisclosed location in order to attend CSO Magazine’s CSO Perspectives event in Santa Clara this week.  CSO Magazine is one of my favorite industry dead-tree reads – they combine physical and information security coverage really well.  I will be blogging and tweeting from the conference, sharing the new perspectives I have gained…

Think before you post that angry tweet… a Chicago woman decided to post her displeasure with the alleged mold situation in her apartment to her Twitter account. Her landlord’s response was a lawsuit for “in excess of $50,000 in damages.”  It seems to me that this was an overreaction by the landlord – had they not filed suit, no one other than the poster’s followers would likely have heard about their (allegedly) fungally enhanced accomodations.  Now, the story has hit the twit and blog ospheres and (at least in my humble opinion), the landlord looks like a bit of a jerk.  Companies need to think about how to deal with threats to their brand on the Internets – and the first step in an effective response is triage.  Take a deep breath and think about what kind of damage is going to be done by a blog post, forum comment, or tweet and think about the consequences of taking action before getting the lawyers involved…