Showing posts with label Security. Show all posts
Showing posts with label Security. Show all posts

Tuesday, December 1, 2015

TED Tuesday: Lorrie Faith Cranor- What’s wrong with your pa$$w0rd?

"So passwords are something that I hear a lot about. A lot of people are frustrated with passwords, and it's bad enough when you have to have one really good password that you can remember but nobody else is going to be able to guess. But what do you do when you have accounts on a hundred different systems and you're supposed to have a unique password for each of these systems? It's tough."



Good Morning Folks,


Abner Goodwin's job title is Systems Specialist so like most IT people he should know best about security right? We'll even some folks in IT can procrastinate changing their passwords longer than filing their income tax. So don't feel bad, but use today's talk to set your browsing on a more secure path.


Abner blogs, "I’ve been an Internet user for about half my life now. That’s been enough time to collect many, many accounts. I have at least 3 email accounts, accounts on the usual social networking sites, and a slew of random accounts for online stores and services. I figure that I have somewhere around 30 personal accounts that I’ve set up over the years. There are many others that I’ve lost track of, consigned to the briny depths of the web to be forever forgotten."


"It’s time for a confession dear readers: I have committed a grievous evil. I have re-used passwords for multiple personal accounts with wild abandon. On top of that, before this article, I had not changed passwords on some accounts for years. What’s worse is I know better than this; I follow best practices for passwords in my professional life obsessively. Seriously, there was an intervention and everything. I guess it would be at this point where I’d say something about the cobbler’s son having no shoes."


"This was pretty much the extent of my super sophisticated personal password scheme. Luckily, I kept the post-it note under my keyboard where no one would ever find it."


"Continuing down this cliche’d path, I’ve heard that people don’t change until the pain of staying the same is greater than the pain of changing. For me, the pain came just a few days ago when I received an email from a forum that I belong to. The email stated that they’d been compromised and that the attacker had gained access to their database of usernames and encrypted passwords."


Lorrie Faith Cranor is a Professor of Computer Science and of Engineering and Public Policy at Carnegie Mellon University where she is director of the CyLab Usable Privacy and Security Laboratory (CUPS) and co-director of the MSIT-Privacy Engineering masters program. She is also a co-founder of Wombat Security Technologies, Inc. She has authored over 100 research papers on online privacy, usable security, and other topics


Lorrie Faith Cranor studied thousands of real passwords to figure out the surprising, very common mistakes that users — and secured sites — make to compromise security. And how, you may ask, did she study thousands of real passwords without compromising the security of any users? That's a story in itself. It's secret data worth knowing, especially if your password is 123456 ...


I found this video on some research Lorrie is doing on the subject very interesting and insightful


Says Lorrie:

 "I always cringe whenever people talk about choosing passwords, but this has some interesting insights into the strengths and weaknesses of various techniques, and it even mentions some I've not heard of before." 
e’ve all heard the common password advice: Choose a random password with a lot of characters, include digits and symbols, don’t use a dictionary word, don’t write it down and change it often. While some of this advice is useful, some of it is counterproductive and probably even harmful. 
Next Friday I will be giving a Game Changer talk at the IAPP Global Privacy Summit in which I will discuss research results—from my own research group at Carnegie Mellon University as well as from others—that demonstrates that what most people thought they knew about passwords is wrong. 
Most humans are not very good at memorizing random things, and they don’t enjoy doing it. While we are impressed by the talent of spelling bee champions, most of us would rather not spend our time on rote memorization. 
It turns out we’re also not very good at coming up with random things, let alone memorizing them. We like to think of ourselves as unique, but we actually think alike more than we want to admit, and we tend to be rather predictable. 
So, when we’re asked to come up with a random password, we do something that seems random to us but is actually what a lot of other people do. We think of some song lyrics, the name of our pet, a cartoon character, a TV show, a sports team or even the name of a friend or family member. Or maybe we trace our fingers on a keyboard and type in a sequence of keys that appear next to each other—maybe diagonally down one column and then up the next, because that seems more random than just going left to right across. If we have to add a symbol, we type an exclamation point at the end. If we have to add a number, it is most likely a 1. And if a capital letter is needed, it goes at the beginning. 
And because this was so much work to not only choose, but to remember, and because we know we’re not supposed to write our passwords down, the next time we have to create a password, we just use the same one we already created.
But what happens when you log in and are told that your password has expired and you have to choose a new one? Chances are you increment the 1 to a 2 or add another exclamation point to the end."
Research shows that forcing users to change their password on a regular basis does not actually increase security. In fact, it encourages users to create weaker passwords and increment them according to a predictable scheme. So, not only does password expiration annoy users, it likely makes their passwords more vulnerable to attack. Have a look:



Here are a few highlights of Lorrie's talk:

  • Long passwords with simple requirements can be easier to use and just as strong as shorter passwords with complex requirements.
  • Password meters can encourage users to create stronger passwords, but most password meters used on websites today provide positive feedback prematurely.
  • Passphrases seem like a good idea, but users don’t find random passphrases more usable than passwords.
  • Monkey is the most popular animal to include in a password and among the most popular words to include in a password.
So it seems that at the end of the day, when we make passwords, we either make something that's really easy to type, a common pattern, or things that remind us of the word password or the account that we've created the password for, or whatever. Or we think about things that make us happy, and we create our password based on things that make us happy. And while this makes typing and remembering your password more fun, it also makes it a lot easier to guess your password. So I know a lot of these TED Talks are inspirational and they make you think about nice, happy things, but when you're creating your password, try to think about something else.


Have a GREAT Day,



Mitchell D. Weiner
Chief Happiness Officer
  




..................................................
"The privilege of a lifetime is to become who you truly are."
 ~ Carl Jung
..................................................


Ideas are not set in stone. When exposed to thoughtful people, they morph and adapt into their most potent form. TED Tuesdays on MitchWeiner.com highlights some of today's most intriguing ideas. Look for more talks on Technology, Entertainment and Design -- plus science, business, global issues, the arts and much more— HERE.  



About FSO Onsite Outsourcing
Recognized on the Inc. 5000 list of the nation's fastest growing companies for the third consecutive year, and lead by industry pioneer, Mitch Weiner, FSO's growth and success can be attributed to making a positive and powerful impact on their clients' bottom lines, as well as their employees' careers and lives.




About Lorrie Faith Cranor

Lorrie Faith Cranor is a Professor of Computer Science and of Engineering and Public Policy at Carnegie Mellon University where she is director of the CyLab Usable Privacy and Security Laboratory (CUPS) and co-director of the MSIT-Privacy Engineering masters program. She is also a co-founder of Wombat Security Technologies, Inc. She has authored over 100 research papers on online privacy, usable security, and other topics. She has played a key role in building the usable privacy and security research community, having co-edited the seminal book Security and Usability (O'Reilly 2005) and founded the Symposium On Usable Privacy and Security (SOUPS). She also chaired the Platform for Privacy Preferences Project (P3P) Specification Working Group at the W3C and authored the book Web Privacy with P3P (O'Reilly 2002). She has served on a number of boards, including the Electronic Frontier Foundation Board of Directors, and on the editorial boards of several journals. In 2003 she was named one of the top 100 innovators 35 or younger by Technology Review magazine. She was previously a researcher at AT&T-Labs Research and taught in the Stern School of Business at New York University. In 2012-13 she spent her sabbatical year as a fellow in the Frank-Ratchye STUDIO for Creative Inquiry at Carnegie Mellon University where she worked on fiber arts projects that combined her interests in privacy and security, quilting, computers, and technology. She practices yoga, plays soccer, and runs after her three children.




Monday, March 10, 2014

We Are The Right People At The Right Time To Make Something Great

"The millennials are accustomed to a world of quick feedback. There is little patience nor tolerance for delayed gratification, so a company that employs many millennials must be prepared to have a culture of frequent and positive feedback."








Good Morning Folks,

Here we go.. MONDAY,  kicking off lots of exciting travel over the next two weeks. I pumped to get out there and see you all.

As we head into a new week remember that everything we want to achieve is in our grasp! Everything we dream about can happen. We just have to have the conviction to go get it. We have to have the heart to make it happen and the desire to put forth the effort.

As you can (re)Imagine, we are in a state of change. FSO is growing and is now truly national with offices, sites and teams all across the country. That means that we must approach the world a little differently, think outside our comfort zone and realize we are only beginning a long journey to maintain and spread the FSO greatness.

That in mind, today I'd like to share some thoughts from Dr. Levy: 
==> Is conflict good or bad??? Most people and companies try to avoid conflict, but addressing and resolving conflict can be advantageous. It can lead to teamwork, the stimulation of new ideas, and an environment in which people are encouraged to think freely and creatively. The key is that conflict be addressed in a positive and constructive manner with the goal of improving and strengthening the company. It can't be about winning, rather about the team growing and winning together.
==> What are some of the keys to an effective Performance Evaluation System??? They should be done on a regular basis; there should not be surprises; feedback should be provided on a consistent basis; feedback should be honest, direct, constructive, and positive. This is particular important with younger employees. The millennials are accustomed to a world of quick feedback. There is little patience nor tolerance for delayed gratification, so a company that employs many millennials must be prepared to have a culture of frequent and positive feedback.
I am excited because I know that FSO is better. I have seen competitive sites, FSO sites and in house sites in the past week and we are the best! If we get in front of decision makers we will win. If we lose it is probably because we missed something.

We are the right people at the right time to make something great. We have only just started.  

Have a great day, INSPIRE YOUR TEAMS, and make a difference.. 

IT IS YOU that makes FSO who we are. Love Life!



Mitchell D. Weiner
Chief Happiness Officer  

....................................................................................
Money will buy a pretty good dog but it won't buy the wag of his tail.” 
-- Josh Billings

.....................................................................................


Monday, February 24, 2014

Guest Post: Dr. Stephen G. Payne Stop the Negative Chit-Chat.

Dr. Stephen G. Payne
"Next time you fancy a gossip, realize its destructive power and stop. Next time someone starts gossiping with you, interrupt and ask: What’s your purpose here?"



Good Morning Folk,

Today is a new day for FSO USA… today.. we start 9 senior professionals who will help us drive our top line faster and stronger than ever dreamt possible. This national team will be led by Pat, and supported by myself, Denise and many others including our Executive Leadership Team.

I am thrilled to have been part of this planning that started in 2009 and today is being executed.

That in mind, I thought this was an excellent read from Dr. Stephen G. Payne, a friend and a business coach of mine for years. Thanks Stephen!

Make a point this week of avoiding scuttlebutt conversations that undermine the spirit of your organization.

Be acutely conscious of gossiping and criticizing colleagues.

Manage your inner core by consciously not sliding into negative chit-chat. That’s real leadership work. Everyone who gossips comes from an unproductive position of neediness.

Why unleash it onto your organization? Be the leader by refusing to let yourself go down the negative spiral with people.

Set the example. Move away or, even better, fill the conversation with truth and commitment that comes from your inner core.

Remember, one word of gratitude is often all it takes to lift the spirit of a colleague.


==> Stop the negative chit-chat. by Dr. Stephen G. Payne

Every negative thing you say diminishes the power of your spider’s web of leadership connections.

What’s wrong with a little back-biting, trashing, or gossiping at work? Everything.

Your goal does not justify saying whatever you like.

Every listener senses your purpose and character. Every negative thing you say diminishes your leadership power.

We all perform best when our connections are full of strength, truth, respect and support.

We respond by giving our loyalty and best work. There’s enough uncertainty in life as it is. 
Why erode the spider's web with weakness?  Sub-par performance and loss of credibility are always the outcomes.

You will never grow as a leader by focusing yourself and others on the negative. But you will grow when you learn to manage your own inner core to avoid negativity and project a positive deeper hope into the spider’s web.

Next time you fancy a gossip, realize its destructive power and stop. Next time someone starts gossiping with you, interrupt and ask: What’s your purpose here?


All of this growth and excitement at FSO would not be possible with all the great people, Future Leader Program, and Leaders we have around the country that has provided the foundation to build upon.

Today is it!!!!!!!!!!!!!!   Excitement at a new level.

Let’s have some fun and lets LIGHT UP THE NATION.. ITS OUR TIME, and you can do it..

From our wonderful FSO Family have a GREAT day  and… Love Life!


Mitchell D. Weiner
Chief Happiness Officer  

...............................................
None of us is as smart as all of us." 
--Ken Blanchard
................................................

Tuesday, January 21, 2014

Jobs, Jobs, JOBS! We Are Hiring. Job Fair Today and Tomorrow! Plus A Nationwide Call For The Best Sales Talent in The USA.


"FSO had terrific results in 2013 and 2014 is unquestionably off to a great start. I appreciate your unrelenting support as we continue to *light up the nation* and assemble teams that promise to deliver value, innovation, process improvement and cost savings to all of our clients."

That in mind, We are HIRING! And holding a Job Fair at our New York office on today and tomorrow.   And also conducting a nationwide search for the  best sales talent in the nation. Read on for details.


Good Afternoon Folks,

WE'RE HIRING!

I'm pleased to share that we are in great standing to make substantial investments to support our budding infrastructure.

We are on fire… we are growing like crazy and we need your help to get the word out to your friends and colleagues who are looking for a job or a BETTER job!

First, today and tomorrow...

RECRUITMENT OPEN HOUSE WILL TAKE PLACE AT OUR HEADQUARTERS, NEW YORK CITY OFFICE:

Tues. January 21st, 2014        7:00am – 5:00pm
Wed. January, 22nd, 2014     12:00pm – 8:00pm

Immediate openings:
•           Hospitality Services       Concierge             Security  
•           Messenger Services       Office Services      Mailroom
•           Sales                            HR                        Operations
•           Record Management      Marketing             IT

In addition....

I am seeking recommendations for strong candidates who will assist my company in building a national, world-class Business Development (a.k.a. Sales) team..

Our sales team is on fire! The tenure of the team is remarkable and their efforts have translated into tremendous opportunity to invest in our "sales engine". We will expand our team in a major way and will be adding over 20 business development (sales) professionals.

Charged with propelling our national expansion plans and uncovering new business opportunities, these individuals will be an integral part of our company's sustainability through our growth. Additionally, they will have a high earning potential and report directly to me and others.

Based on market demands and with operations in 57 major US cities, we are looking to make immediate hires in the following areas:
·         New York
·         Philadelphia
·         Washington, DC
·         Atlanta
·         Miami
·         Chicago
·         Dallas
·         Houston
·         Los Angeles
·         San Francisco

Should you or someone you know of be a good fit for FSO's Personal, Passionate & Productive culture, please contact me directly (mweiner at fso-outsourcing.com) or send resumes to Lindsay Gallagher (lgallagher at fso-outsourcing.com).

As always, I appreciate your unrelenting support as we continue to *light up the nation* and assemble teams that promise to deliver value, innovation, process improvement and cost savings to all of our clients.

Have a GREAT day as I look forward to seeing all of you soon.








Mitchell D. Weiner
Chief Happiness Officer


Wednesday, August 14, 2013

This is MAJOR: Promotions, Appointments and New Staff Restructure to Support Stunning and Rapid Expansion

"The talent within our organization is awesome, but what makes FSO so unique is the passion and love that we possess. We are proud to share that warmth and level of care with our clients, our employees, and of course amongst ourselves."





Good Morning Folks, 

During our planning phase in 2010, my vision was to bring FSO to a national organization by 2015 – building regions and solidifying deals that are national in all verticals, especially in the legal marketplace. 

No business can sustain growth without investments in its infrastructure, people, systems, and training. This, coupled with remaining close to my staff and clients, has always been my benchmark for success. With that said, I’m very pleased to announce a major restructure that includes promotions, appointments and the addition of new staff. 

Joining our family as Vice-President, General Manager is Richard Boland. In this highly important role for FSO, Rich is poised to have an immediate impact on our staff, clients and results as they relate to profits and revenue stream. He will cover the entire Mid-Atlantic region and select accounts in NYC. Reporting in to him will be Dave Christian (Mid-Atlantic Regional Director), Angel Negron (Experience Director), and Neal Michael (Experience Director). Additionally, Rich will immediately take charge of the NY sales team, and hold responsibility for database and document management. As well, effective immediately, Rich will be a member of our Executive Leadership Team.

Prior to joining the FSO family, Rich held full P&L responsibility for Iron Mountain’s southern United States area, which included 13 states and 2,000 employees. Rich grew total revenues, increased profit contribution from the region, and closed more than 10 strategic acquisitions in new and existing markets. Before joining Iron Mountain, Rich led the Southeast Region of Pitney Bowes Management Services. Rich joined Pitney Bowes through the acquisition of Ameriscribe Management Services. At Ameriscribe, Rich served as Vice President of the Central Region and Canada.  He was also a member of the senior management transition team that created and integrated the new organization following the acquisition by Pitney Bowes.

To say that Rich is excited to join FSO is an understatement. In a recent exchange, Rich said something that I have not forgotten – great businesses are defined by great people, and the experience we’ve shown him thus far reinforces his confidence that there is a fantastic future on the horizon for all of us. I could not agree more! Rich, we are very excited to have you with us.

Also joining our family is John DeSena as Vice President & General Manager, North America. A true industry leader, John brings to FSO an intimate knowledge of our business. Dating back 25 years, John worked for me in building and growing the outsourcing business at Archer. Today, like so many others, John has “come home” to be a part of an organization where the emphasis is on the people. Something so many of our competitors have forgotten.

A seasoned general management executive, John most recently served as Vice President of Operations at Canon where he managed over 1,000 employees in five regions across the country. Notably, he achieved over 120 million in revenue across multiple services while remaining focused on delivering client solutions and satisfaction. Additionally, over his illustrious career, John has: led large customer implementations across multiple regions and service offerings; created operations infrastructure to support and exceed client expectations on a national level, while providing support to thousands of field employees; provided the oversight of digital document conversion; and been instrumental in integrating people, process, and technology for multiple top Fortune 50 companies. 

Headquartered in Los Angeles, John’s sole role for FSO will be to build us a national organization for operations, sales and people solutions while driving strategic and financial results. This will include, but not be limited to, hiring, training and managing teams throughout the United States. Effective immediately, John will also take a seat on our Executive Leadership Team.

Reporting in to John is Christine Rainey. Before I can say any more though, I’m thrilled to announce the promotion of Christine Rainey to Regional Director of the North East. When it comes to attention to detail and building robust teams that deliver Service Extraordinaire, there is no one more dedicated than Christine. She has taken a portfolio of business and sites in our New Jersey market and doubled it in just over a year. This type of success comes from Christine’s ability to maintain 100% client retention and amazing references from every client. With this type of success, it should come as no surprise that it is time to take Christine’s talent to greater heights. 

Also reporting in to John is Missy Adriazola (National Director of Hospitality and Training). In her expanded role, Missy will be supporting John to build our national structure for front of house and hospitality.

Another report in to John is a familiar name for many of you. With nine years of experience working in our company, I’m thrilled to announce that Lori Dacchille, who recently relocated to California, will be supporting John to build a robust People Solutions organization for us on the West Coast. Welcome back Lori! 

With all of that said, please join me in welcoming Rich; welcoming home John and Lori; and congratulating Christine! The talent within our organization is awesome, but what makes FSO so unique is the passion and love that we possess. We are proud to share that warmth and level of care with our clients, our employees, and of course amongst ourselves. 

Our future is bright and I am focused on helping each and every one of you achieve your greatest success and fulfill your dreams.  

Have a GREAT day as I look forward to seeing all of you soon.








Mitchell D. Weiner
Chief Happiness Officer


Learn more about what DIFFERENTIATES FSO here
About the Author:
Welcome to the fastest growing onsite outsourcing company in the nation! Led by Mitch Weiner, co-founder and industry pioneer, FSO is "the" award winning enterprise-wide outsourcing and people solutions firm servicing a multitude of clients across North America.

Contact Mitch: Twitter | Facebook | LinkedIn | Email