this post was submitted on 16 Jun 2024
228 points (96.7% liked)
Technology
59415 readers
3119 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I've worked in IT for 15 years and it's the first time I've heard SMS phishing condensed to smishing. But I specialize in servers and server security, so I'm not too surprised it's a thing.
We're forced to take a cybersecurity online course every year, and I'm constantly confused at what the terms are supposed to mean. Like why is spear phishing a thing? Why do we need specialized terms for every conceivable variation of a concept?
Let's just stick with basic terms:
I may be missing a couple, but I think most cybersecurity concepts can fit in one of those categories.
Well, I'm not a cybersec specialist, but my job requires us to comply with NIST cyber security frameworks, including going through external audits every year. In my opinion, your basic generalities are fine for those not working in that field specifically.
However, for cyber security analysts and other specialists, I think specific subcategories are necessary. The reason being, IT is an absolutely massive field that contains a ton of specialties. As such, that means there are roughly an equal variety of malicious actors in the same field.
There's no such thing really as a general "hacker" anymore. Especially when you take into consideration the rapid expansion of state sponsored cyber attacks/warfare. You'll have specialists for various types of:
Sorry, tangent is getting a bit long-winded now. Anyway, tldr; general terms are fine for laymen or non-specialists, but more precise terms are beneficial for experts in that field.
Sure, specialists can and should use specialized terms. But that's not what articles like this are targeting. Keep that to symposiums and whatnot, and keep the general public vernacular simple to avoid confusion. That's all I'm saying.
Fair point. Though, the source is data center dynamics, which does seem a bit niche.
I suppose, but the article has nothing to do with data centers and is written like any other news article on regular news sites. It's a little more tech focused, but still very accessible.
Open Source Security Podcast with Josh Bresher and Kurt Sigfried. It's a pretty good source of news and discussion from a sysadmin perspective.