I spoke with John Pescatore, VP and research fellow for information security at market research firm Gartner, Inc. for this story, posted earlier today, about the SANS Institute's report on the 20 most critical Internet security vulnerabilities for 2005.The interview is presented here in its entirety because I'm too lazy to transcribe it. And because John is worth listening to. He's been covering security for years and he knows his stuff.
An interesting aside leading up to this story: Last Thursday, I attended a dinner at Jeanty At Jack's, a San Francisco bistro, hosted by Outcast PR to promote security vendor and client Fortify Software. (I got dinner, all they got was this lousy link.)
The guest of honor was Howard Schmidt. About 7:15 p.m., the 20 of us or so in the room are startled by a scream and smash -- there's just been an accident outside on the street. Howard rushes out to help (he has a background in law enforcement). That's the sort of person you want to hire as a CSO.