AWS Security Strategy || Ponzi Blockchain scheme
CyberInsights #55
How AWS built their security…
This is not news, but when you are in paradise, you do not want to focus on what went wrong - you want to focus on what went right!
This article on CRN features an interview with the CISO of AWS, CJ Moses. It’s one of those irritating ones where one article has been spread across 8 pages to get more clicks, but once you get past that, it has many gems of wisdom.
Here are a few:
First off, we don’t bolt security on. We built it from scratch.
Every service team that’s been hired, has been hired with a security culture in mind. So that’s every individual person that’s part of the team.
We took the security culture that we had from our paranoid life of FBI and OSI and all these things, and integrated with the ownership model that is part of the core Amazon environment and culture.
That’s exactly what you’re seeing in a lot of these different cases is: we’re not looking for the threat of tomorrow. We’re looking for the threat cases and vulnerability cases that are out years ahead.
There’s always a human behind the keyboard. These things aren’t happening randomly off computers doing things. These things are humans with intent behind them.
We actually have security trained ambassadors for the service teams called ‘Security Guardians’ so those teams don’t have to come to our security, they’re going to have their own security engineers in many cases.
Do yourself a favour and read the entire article and learn from the best. It will be the best 8 clicks to read one article that you have spent in a while. 😆
Like the CEO of AWS says:
There is no compression algorithm for experience.
Crypto startup was nothing but a blockchain based Ponzi scheme…
They said “anything you can do, you can do it more securely on the blockchain”. This startup seems to have taken that to heart. They put up a Ponzi scheme on the blockchain. If you look at the website of Forsage, you will see nothing but a another crypto startup. A regular run-of-the-mill startup trying to build a business model around smart contracts in the blockchain. As expected, they talk about the Ethereum and Binance blockchains for contracts.
The SEC however, tends to think that this is a run-of-the-mill Ponzi scheme, where the only way to make money is recruit more people on to the platform. Read this article on The Register for more info.
Take Action:
Learn to recognise a Ponzi scheme. It could range from a simple MLM based model to a complex blockchain based business.
Read this acticle from The Motley Fool about how to recognise a Ponzi scheme. It is from the financial fraud perspective, but the basics remain the same.
Enjoyed reading? Receive this in your email every week.