Vikas on Security

Most persons active on internet for the last decade or two have a Yahoo email account. While many amongst us may have graduated to Gmail, some retain Yahoo as their primary email account and quite a few have it as their secondary account. Recently, Yahoo announced that 500 million user accounts had been compromised. The large number of records means that 10% of internet users’ email accounts have been affected. The data includes users' names, email addresses, telephone numbers, dates of birth and encrypted passwords. Yahoo claims that this was supposedly done by a nation state actor and the breach had been done way back in 2014. What implications does it have for individual users and what lessons can be learned from this ? What is the effect? The most alarming thing about the breach was that two years had passed since the breach and it took so much time for them to detect it, go public and announce it. Yahoo has conveniently deflected the blame from its security failure...

I recently received a query from a fellow veteran on value and requirement of getting certifications in Cyber Security. I have appended the question and my reply for others who are planning to delve into an information security career. Dear Vikas, Have gone through your linkedin profile. You are a highly qualified officer having even done CISM & PMP. I'm a ____ but have a fair amount of exposure in IT having done ADP(SAP), ADP(SYS) & two appts in IT Field ! However, I do understand practically a whole lot of things having executed & handled network projects, cyber security etc. I wish to ask you if it is worth getting certified in CISM, PMP & CISSP or not !! Thanks & regards, XYZ Dear Sir Being certified or not is a personal choice and there are number of arguments both for and against  getting certifications. My perspective is based on my requirements and aspirations which I will be outline below. For an Army Off...