Share this page!

Robᵉʳᵗ Graham😷, provocateur Profile picture
Twitter logo
3 Jul, 8 tweets, 3 min read
27% chance of #ransomware happening on a weekend

compared with

28.6% of any random event happening on a weekend (2 divided by 7).
Such reports really bug me. Completely random events break down as:
28.6% on weekends
29.8% during work hours
41.7% after work hours

Statistically, #randomware is slightly more likely to happen during work hours than random chance.
It's like the age-old observation that 40% of "sick days" that employees claim take place next to a weekend (Mon or Fri).
Sometimes the field of cybersecurity is little different than the science of astrology. Let's take what a statistically random sequence of events and search for patterns that fit our prejudices.
Oops, I see that I accidentally misspelled #ransomware. On further reflection, however, maybe I didn't. Maybe my subconscious is smarter than my conscious.
Bah, I knew it was Dilbert from which I got the joke, but I couldn't remember, and didn't want to search for the cartoon.

Now if somebody could find the Dilbert cartoon for me where the PHB fails to priority things because everything is the top priority.
Note that this thread is not a criticism of Fireeye. They do work and have good data. And even the smartest person falls into the astrology trap. It's the plague of data breach investigations where we tend to see what we are biased to see rather than what really happened.
Instead, this thread is meant as a lesson in the problem. See how we look at the data and come away with nearly opposite conclusion? (the data shows slightly more likely to happen during work hours than random chance)

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Robᵉʳᵗ Graham😷, provocateur

Robᵉʳᵗ Graham😷, provocateur Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ErrataRob

Robᵉʳᵗ Graham😷, provocateur Profile picture
4 Jul
It's literally not super racist. It's like how the phrase "muslim terrorist" does not mean "all muslims are terrorists", but that the terrorists who attacked us on 9/11 where practiced Islam.
It literally says "all men are created equal", and while the Founders struggled to put that in to practice (with subjugation of natives and enslavement of Africans), it's an aspiration we've been struggling to live up to this entire time.
I mean, four score and seven years later, somebody famously pointed out that we were failing to live up to ideals of the Declaration, and that we needed a rebirth of freedom.
Read 5 tweets
Robᵉʳᵗ Graham😷, provocateur Profile picture
3 Jul
Not since Crown Sterling have we had this level of insight. To be fair, it's only RSA Conference, where this sort of thing is the norm rather than the exception.
Security wasn't an "afterthought". Instead, it's a separate layer based on the belief that there cannot be a one-size-fits all security solution.
rsaconference.com/library/Blog/u…
In other words, they didn't come up with SSL right away, but they came up with an architecture in which SSL and many competing solutions (like IPsec) can be layered on top of the existing infrastructure.
Read 5 tweets
Robᵉʳᵗ Graham😷, provocateur Profile picture
2 Jul
This is a great demonstration how people don't believe in science, that they treat it instead like politics or religion.

In politics/religion, what you believe now is something you should always have believed. In science, you change your mind.
50 years ago, people didn't know what we know now about climate. There were lots of studies with predictions all over the place, including many predicting cooling. (No, there was no consensus on cooling like today's consensus on warming).
What some people do is go backwards in time and cherry pick those things that agree with modern knowledge and claim "they knew all along" while ignoring all the rest of the stuff where people believed other things.
Read 4 tweets
Robᵉʳᵗ Graham😷, provocateur Profile picture
30 Jun
Nobody sees themselves as a "special interest". They believe they are fighting the good fight against "special interests". That's the attitude shown below.
The people fighting for "privacy" are not working in the public interest. They've given you a popup on every website you visit asking if you want to accept cookies, which is meaningless and stupid.
Privacy invasion is in the public interest. For example, Apple and Google maps can tell you the time to your destination and route your around traffic jams because they get all this information about traffic by monitor phone locations.
Read 7 tweets
Robᵉʳᵗ Graham😷, provocateur Profile picture
27 Jun
Victim blaming is to become the basis for cyber policy in Washington. It's easier to punish the victims inside our country than going after the bad actors in other countries.
voanews.com/silicon-valley…
Most people believe that cyber victims are guilty of some moral weakness: ignorance, sloth, greed, lust, etc. Thus, whenever cyberattacks happen, they blame the victim for being weak.
That's why you see phrases like "basic cyber hygiene". That's not a thing. There's no standard anywhere that defines this. Ask 10 experts what those steps are and you'll get 12 different answers.
Read 9 tweets
Robᵉʳᵗ Graham😷, provocateur Profile picture
25 Jun
So I looked in this.
Committing crimes like arson won't get your license suspended.
It's ethics violations like lying to the court that gets your license revoked.
The court cited numerous clearly false statements by Giuliani claiming election fraud.
Giuliani's defense is that he didn't know all those election fraud statements were lies. The court doesn't believe him. The breadth of his lies was so huge it wasn't difficult for the court to document them.
cnn.com/2021/06/24/pol…
Note that these aren't things that people still disagree about, that some believe are true.

These are statements which the court proves are untrue, which even Giuliani admits were not true.
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @ErrataRob has new unrolls!

Check out other threads from @ErrataRob!

Read all threads by @ErrataRob

:(