Nick Selby

Banks and their customers are on opposite ends of a feud over which is responsible when online banking accounts get hacked and pillaged. But where does the fault really lie?

One of the most common complaints I hear from information security executives in large organizations is that they are constantly playing defense, not offense. Their network security apparatus is designed to wait for an attack, see if it's successful and, if it is, to plug the hole, then repeat.

As an analyst, and now as a consultant, I raise issues of digital and physical security: let's talk about them, in plain terms, and collectively move to do something. As a member of the security digerati, I think we should be helping people, and we have to either step up with a better way forward, or get the hell out of the way.