Paul Shelton

Remember the old days of phishing, where poorly written and designed e-mails linked to obviously fake websites, where you were asked to divulge your Social Security number, your mother’s maiden name, even your passwords. Those were simpler times — so much easier to spot a phishing scam. The warnings were clear and the perpetrators clumsy…

When was the last time a salesman presented a product with the caveat that it wouldn’t solve the client’s problems? Never, of course. Every security vendor has the answer to every organization’s prayers. To sift through the noise from the steady stream of sales pitches, many organizations gravitate toward whatever is shiny and new. They…

Few email users fork over their bank account numbers to Nigerian princes or click links to claim lottery prizes anymore. In fact, as digital natives enter the workforce, the collective sophistication of email users grows. Yet email scams are still big business. That’s because while users are increasingly savvy, so are the bad actors. Today’s…

A CFO gets an email from his CEO: She is traveling, but needs $10 million transferred to an account to finalize an acquisition. The CFO knows a deal is in the works, so he approves the transfer. Poof! The money is gone forever. It turns out a fraudster sent the email. Farfetched? Hardly. This trick…

A business hires two security guards to protect the premises. The first guard patrols the perimeter while the second protects the lobby. Late one night, the guard patrolling the perimeter discovers a freshly broken window. You’d expect that he would immediately alert the inside security guard about the possibility of an intruder, right? Unfortunately, IT…

In my 15 years of experience in consulting with customers on their security strategy, one thing is abundantly clear, security is tricky. No matter whom we work with, they have questions and concerns revolving around their security. “Am I secure enough?” is the nagging question that will keep security managers up at night. That’s not…