Facebook CSO: We Need More People-Centric Security -- Security Today

Facebook CSO: We Need More People-Centric Security

At the Annual Black Hat conference, Facebook Chief Security Officer Alex Stamos told the crowd that something needs to change in the security industry.

Jul 28, 2017

According to Facebook’s Chief Security Officer, the cybersecurity industry needs to be more focused on people less on technology.

At the annual Black Hat conference this year, Alex Stamos scolded the security industry for being too focused on technology and less focused on finding a mass solution that could help people stay safe in his keynote speech.

“We have perfected the art of finding problems without fixing real work issues,” Stamos told the crowd. “We focus too much on complexity, not harm.”

He cited examples, such as an insulin pump being hacked, that had little relation to real issues experienced by people who use technology rather than work with it or understand it well.

The security industry, according to Stamos, is concentrated too much on the small number of complex attacks aimed at large corporation that were mounted by the most sophisticated adversaries.

For Facebook, Stamos explained, their users are not being targeted by spies or nation-states. The company is more focused on how it can help its users dodge attacks and hacks that happen to its two billion users each day.

"The things that we see, that we come across every day, that cause people to lose control of their information are not that advanced," Stamos said. "Adversaries will do the simplest thing they need to do to make an attack work."

Stamos attributed the lack of focus on the smaller issues to the interest in the more complex hacks that threaten those who are of higher status. He said security experts have little interest or empathy for people, due to the way that they believed there would be fewer breaches and less data loss if people were just perfect.

To Stamos, the growing cybersecurity industry means there is a real chance at improving people’s lives, so why aren’t the experts trying harder?

Watch the entire keynote speech on Facebook’s Security page here.

Featured

UL Solutions Launches Artificial Intelligence Safety Certification Services

UL Solutions Inc., a global leader in safety science, today announced the launch of artificial intelligence (AI) safety certification services, enabling comprehensive assessments for evaluating the safety of AI-powered products. Read Now
- Artificial Intelligence
Ransomware Attacks Rise for the First Time in Six Months

Ransomware attacks have risen for the first time in six months, increasing by 28% month-on-month to 421 attacks. While overall attack volume remained below 500, the uptick may signal a renewed escalation heading into the year’s most active period for cyber criminals. Read Now
- Cybersecurity
Report: 47 Percent of Security Service Providers Are Not Yet Using AI or Automation Tools

Trackforce, a provider of security workforce management platforms, today announced the launch of its 2025 Physical Security Operations Benchmark Report, an industry-first study that benchmarks both private security service providers and corporate security teams side by side. Based on a survey of over 300 security professionals across the globe, the report provides a comprehensive look at the state of physical security operations. Read Now
- Guard Services
Identity Governance at the Crossroads of Complexity and Scale

Modern enterprises are grappling with an increasing number of identities, both human and machine, across an ever-growing number of systems. They must also deal with increased operational demands, including faster onboarding, more scalable models, and tighter security enforcement. Navigating these ever-growing challenges with speed and accuracy requires a new approach to identity governance that is built for the future enterprise. Read Now
- Cybersecurity
Eagle Eye Networks Launches AI Camera Gun Detection

Eagle Eye Networks, a provider of cloud video surveillance, recently introduced Eagle Eye Gun Detection, a new layer of protection for schools and businesses that works with existing security cameras and infrastructure. Eagle Eye Networks is the first to build gun detection into its platform. Read Now
- Active Shooter

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

Automatic Systems V07

Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.
ResponderLink

Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.
Connect ONE®

Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.