Security After Dark: What makes a secure life after you leave the office?

Oh wow. That was another fantastic presentation from Alex, Chris. What did you think about that? Well, I didn't think I could be more impressed or overwhelmed than Paula. But I-- Alex blew my mind equally as much. I really like this idea of the M&M security. I never even thought about that. But the crunchy exterior and soft interior like that makes sense, kind of a little bit more outside but watching inside. Did you have anything that particularly jumped out at you? There was a lot in his talk. Yeah. He mentioned on Premises is where we're being attacked. We're moving to the cloud, a majority of our systems and infrastructure is in the cloud. But it's still on Premises is where we're being attacked. And I remember during Tech Atlanta, someone had tweeted out a screenshot and quoted him. And then he-- they said, "I need my management to hear this." That really struck out at me because that is huge. That's part of what Paula was talking about watching the privileged users. A lot of what we-- he talked about today is that on Premise area is still definitely a big part of the infrastructure that we have to make sure that we're secure. And we can't just forget about it even though we're in the new wonderful place up in the cloud. That was fascinating. Also the fact that-- I'll be honest with you. I try to use all the good security principles. But I'll be honest, over the past four or five years, I've become a lot more sensitive. I think part of it was during the pandemic, I had time to actually to start to really think about all of my different secured systems. But just I think as one that was in 2018, only less than 2% of the people were using MFA. Whereas now in 20-- I think it was in 2022 is almost 27%. So that's a big jump in people. Huge jump. Yeah, I-- Still not high enough. Well, no-- I mean, one, it's an amazing job but still just over a quarter of folks have accounts. But what fascinated me, was everything else is going up too. The breach we play, password spraying-- phishing I mean, passwords by itself went up. Almost more than five times up from like 350,000 accounts compromised to password spraying of 5 million. I mean, just the volume and the velocity that hackers are taking. We might be securing ourselves more. But they're still coming at us very ferocious. Well, as we learn from Paula, they're being paid well to do so. Yeah. Wrong industry. Wrong industry. And the last thing I really took away from here is that was really interesting was the social aspect of all the security. He had this interesting stat like if you don't make people type in a number to say yes, that's OK, they would just say yes automatically. And I just thought to myself people are so used to hitting that yes button. But unless you make them stop and type in the number, like please put in the four digit code, they'll just approve just about anything. And I thought to myself, that's so true. Because whenever I'm forced to put in those four digit codes I get texted, I slow down for a minute. It certainly makes me clench up a little bit when I get one of those codes on I didn't ask for it. Yes, definitely slowing down. I can't tell you how many times I've sort of hit something on my phone, just I'm like-- I've got-- I'm focused. I want to do something. And the screen pops up. And I just hit OK or cancel and keep moving forward. I can see why they want to make us slow down, for sure. Well, I know that you have some thoughts-- additional thoughts on this bringing this home personally but what he talked about. I'd love to hear more of what you have to say, Chris. Thank you. I do have a little bit more to share. And hopefully, you guys will come along on my wacky little adventure one more time. I have this idea I'd like to introduce to you guys of Security After Dark. Now, a lot like Paula's talk where I mentioned that we were raising hackers with Security After Dark. I want to actually start to address with all these statistics and all these things we're doing at the Office, what are we doing at home and our personal lives? We might be raising hackers, but are we actually raising a secure family? So let's talk about Security After Dark. Just like I shared before about my evolution growing up, my evolution for security has changed a little bit too. Because of where I am in my career, I grew up in this age of what I would call file permissions. All my security for most of my early career, I'll be honest with you, I was just securing directories and file shares. It was like all I had to worry about. I'm telling you I must have typed "change mod" about 100 times. I lived in the terminal. I think last year at TEC, we had the creator of PowerShell. But that's neither here nor there. We're in this year's TEC. And then as that age permissions change the age of file questions, slowly but surely, files themselves have vanished over the last 20 years. When you think about the applications and services and companies that we've all started to use, so much of that content and so much of those permissions and things slowly evaporate. Just try to find an old photo in your phone. Then got me thinking. OK, this really was never about files or solely about the device permissions. And I started thinking about how all the different devices I've had to secure over the last, for me, 15 years