I wanted to take a few moments and apologize to many of my former students.

In the past I said the industry needs people who look at security as a vocation and an avocation.

I was wrong.

Have a life outside of this industry.

Have hobbies that have nothing to do with your computer.

Get outside.

The problems of the industry are not problems of people not working hard enough.

They are not problems of people not being "hard core" enough.

They are problems of education and resource prioritization.

I was wrong.

I am sorry.

Stop breaking yourself on rocks for people who don't really care if you break yourself on rocks.

Open question: What changes are you making in your assumptions about human interactions as we hear about research such as https://www.zdnet.com/article/microsoft-quietly-revealed-a-new-type-of-ai-it-may-quietly-petrify-you/?

30 years ago - and many times since then - we've enjoyed Sneakers as a great hacker movie. "My voice is my passport" is something many of us recognize...

Yet I assume many (all?) of us would be powerless against an adversary that can emulate a relative's voice over the phone asking us for money. Many in my native Brazil are familiar with the 'fake kidnapping' con. How will that change if someone's voice can be realistically cloned?

Even if some of us are somehow savvy enough to make the distinction (I'm probably not), what about those around us who are not so fortunate?

Not saying I have an answer, just wondering about it on a Sunday morning...

Turla, a hacker group linked to Russia's FSB, has been re-registering expired domains to take control of banking trojans other hackers infected computers with via USB drives—according to Mandiant—then sifting the infections to find targets for espionage.

https://www.wired.com/story/russia-turla-fsb-usb-infection/