Ex-FBI man spills on why hackers are winning the security game

Ex-FBI man spills on why hackers are winning the security game • The Register:
"Comfortable illusions about how security is working are crippling the ability of government and industry to fight the threat, a former member of the FBI’s netsec team has told the B-Sides San Francisco security conference.
Society is operating under the illusion that governments and corporations are taking rational choices about computer security, but the fact of the matter is that we’re drowning under a sea of false positive, bad management, and a false belief in the power of technology to save us.
“The government is very reactive,” said Jason Truppi, director of endpoint detection and response at security firm Tanium and a former FBI investigator.
“Over time we’ve learned it wasn’t working - just being reactive, not proactive.”
Truppi said we need to puncture the belief that government and industry are working together to solve online threats. In reality, he says, the commercial sector and government are working to very different agendas and the result is a hopeless mishmash of confusing loyalties.
On threat intelligence sharing, for example, the government encourages business to share news of vulnerabilities.
But the subsequent investigations can be wide-ranging and lead to business' people being charged for unrelated matters.
A result, companies are increasingly unwilling to share data if it exposes them to wider risks..."
Read on!