The No. 1 problem with computer security

Everyone focuses on the wrong threats. You've undoubtedly been breached already, so the key is to collect data that can help you prevent attackers from succeeding again

I've been in the computer security field for nearly three decades. During that time, I've watched it go from bad to worse to ugly.

Today, the average computer security defense is so bad, we had to invent a new paradigm a few years ago called "assume breach." This phrase admits that our security controls are so inadequate that we concede defeat in preventing hackers from gaining access to our environments. Instead, we concentrate on limiting the damage attackers do once they're inside our "hard outer shell."

Copyright © 2015 IDG Communications, Inc.

7 hot cybersecurity trends (and 2 going cold)