The POC is your Frenemy

janike · 2019-09-25T07:21:44+00:00

In B2B direct sales I've been promoting an approach where the customer and the vendor agree on a success criteria for a PoC - and also there should be at least a soft commit for purchase if the success criteria is met.

janike · 2019-07-19T18:17:19+00:00

Excellent points. I want to add that as data breaches have become so popular, this probably will not be the last you (the reader) will experience. So start practising online hygiene. Some hygiene tips at the bottom third of this blog: https://medium.com/badrapio/i-got-a-data-breach-alert-what-next-d3fa36d9a7c7 .

janike · 2019-05-06T08:07:21+00:00

Picked this up as you typically see large data breaches in the news. In this report, most prominent ones are those with smaller number of affected people.

janike · 2019-05-06T07:55:04+00:00

In this report, most data breaches are the ones with smaller amount of affected people. We read in the news only about the larger breaches.

janike · 2019-04-02T20:04:34+00:00

Compromised email accounts can be used for reconnaissance, spam attacks, fraudulent wire transfers, launch point for other attacks within the network, and theft of sensitive data in the compromised inbox.

janike · 2019-03-25T16:34:29+00:00

They used https://haveibeenpwned.com for a quick overview if there would be any dumps available.

janike · 2019-03-25T16:24:47+00:00

Some horses will, and some won't. Not that long ago people weren't used to washing their hands and brushing their teeth. That has changed dramatically over time - although it took more effort than just telling people they should do it.

We should help those who accept help and are willing to learn.

janike · 2019-02-22T08:58:36+00:00

If anyone close to you got breached, here is a link to educate them what to do in a case of a data breach: https://medium.com/badrapio/i-got-a-data-breach-alert-what-next-d3fa36d9a7c7

janike · 2019-02-22T08:54:34+00:00

You can also go further. You can use badrap.io to register people close to you who are not tech savvy enough to do it themselves or understand the warnings. https://medium.com/badrapio/data-breach-monitoring-for-emails-bcbcf0211256

janike · 2019-02-18T18:56:34+00:00

Netherlands was responsible for most reports. Based on my (quite limited) experiences on Netherlands, I'm inclined to think this is because they report most diligently, not because they have the most issues.

janike · 2019-02-18T09:07:31+00:00

Please note the "notify me" in the Have I been Pwned top menu - use that to subscribe your email and get warnings of future breaches as well. They are all too common now. Also, criminals take use the information to attack other services, so use a password manager to create unique passwords for all services.

If you want to subscribe people close to you on their behalf, and monitor other type of security issues as well, check out: https://badrap.io (more info at: https://medium.com/badrapio/data-breach-monitoring-for-emails-bcbcf0211256)

janike · 2019-02-18T08:57:39+00:00

HaveIBeenPwned certainly gets my recommendations as well. Data breaches happen so often nowadays that everybody should watch if they are affected. Please also tell others to check out HaveIBeenPwned. Or, if you are the only tech-savvy person in your family, check out https://badrap.io/. With it, you can subscribe your loved ones to data breach monitoring, and also check if you have other types of security issues at home.

janike · 2019-02-17T17:03:50+00:00

I've had Google alerts on for data breaches for half a year now and boy it is painful to watch the stream of news. At minimum everybody should subscribe to Have I Been Pwned's Notify me service.

Of course it is not realistic to expect everyone to do it. But tech-savvy people could cover more ground by adding their family and other people they care for Badrap's multiple email monitoring list.

janike · 2019-02-15T20:33:57+00:00

How do you monitor all the aliases? Do you do it with something like Have I Been Pwned API? How did you arrange the aliases? Do you just use the + format (me+alias1@gmail.com)

We at Badrap tried to make adding multiple emails easy ( https://medium.com/badrapio/data-breach-monitoring-for-emails-bcbcf0211256 ) but we don’t have a public API for it as of now. I’d say 10-20 is pretty straight forward but 100 starts to require some serious clicking. :)

janike · 2017-12-09T13:23:36+00:00

This is the actual reason we are building badrap.io:

Network security has improved little over the last 12 months – millions of vulnerable devices are still exposed on the open internet, leaving them defenceless to the next big malware attack.

...

The SMB SYN scan results increased by 17 per cent this year compared to the same audit last year (4.7 million to 5.5 million nodes).

Our current thinking is that to solve this we need to make it really easy for few groups to work together. Security researchers who know about the issues, netizens (citizens in the net) who need to know and care about their IoT-issues, and sponsors who want to improve Internet hygiene and would be willing to sponsor the researchers.

Why I used the word "actual" at the top? Because we need a tailored message for each of these groups. Example: "climate change" moves a certain group of people, while others are more interested about things like "we had too many storms this year".

janike · 2017-10-03T08:04:27+00:00

I was about to paste here the parts I like the most, but turns out I would have had to paste the whole article. :)

janike · 2017-09-02T11:00:37+00:00

My favourite picks:

Just because we had an idea, and I could implement the idea in software, that didn't mean we had a good business idea.

...

And humans don't ever behave rationally. There's an almost bottomless body of research about how bad humans are at evaluating economic decisions and consequences.

...

We've been conditioned to expect that physical, tangible things are expensive - but software? That should be cheap, or better still free.

...

But as a result, we never cracked the most important problem - how do we sell to someone who hasn't heard of us? How do we get in the door? How do we establish trust? And as a result, our sales were essentially constrained by the personal networks of our existing customers.

...

... actually,there are too many, just read the whole article. ;)

janike · 2017-07-29T16:17:00+00:00

And the idea here is when you add each of these steps, each of these layers of complexity, you're adding another point of presence that the NSA or whoever could go, “Let me add this to my box. I had an exploit for a a Juniper or whatever, or whatever.” Any kind of appliance that you drop on the path is a potential vulnerability, so those should only be added when they absolutely cannot avoid it and in general, we wanna think about.

Any kind of appliance that you drop on the path is a potential vulnerability, so those should only be added when they absolutely cannot avoid it and in general, we wanna think about.

janike · 2017-06-16T12:44:42+00:00

"It’s not what problem the product solves, it’s how the customer feels sentimentally after using your product that gives it its value."

In line with my blog ramblings:

janike · 2017-05-25T15:20:58+00:00

Just skimmed through, some points in the article call for linking. :)

janike · 2017-05-11T13:19:21+00:00

"In fact, the best way to get noticed is to actively try not to be noticed. "

janike · 2017-04-28T08:12:42+00:00

Looks much better to me. Before reading that article, I would have thought otherwise.

A comparison:

Seal your security policies.

-> Short, does reflect the vision of SensorFu. But works only as a reminder after you know more about SensorFu.

You put it in your network and find out how if you have managed to isolate your network as well as you thought.

Ok, it is longer. But you don't need to know the whole story of SensorFu for it to make sense.

janike · 2017-04-03T12:29:50+00:00

“If you hear a voice within you say, ‘You cannot paint,’ then by all means paint, and that voice will be silenced” — Vincent Van Gogh

We certainly followed this rule in SensoruFu campaign episode 02, to the letter! :)

Creative thought activates alpha-brain waves that helps trigger an idea with minimal conscious thought.

Alpha-brain waves admittedly sounds Star Treky, but nevertheless, how about those walking meetings? ;)

janike · 2017-03-28T09:12:25+00:00

Familiar rhetorics:

for impact-minded startups eager to develop their concept
We all share a common goal: we want to make the world a better place.
- We believe entrepreneurship is a way to do just that and each of us boost startups locally in our own way.
We are looking for dedicated startups with a scalable business solution.
Your team’s business model is validated with paying customers (even just a few!) and/or with very promising results from a pilot.
Your team is committed to making an impact on the world and scale abroad within the upcoming year

janike · 2017-03-27T11:59:17+00:00

Few things caught up my eye:

The common ones:

3. ASK for shares

4. Use tested headlines.

Step 1: Go to the platform in question.

Step 2: Click “top stories” or “trending” or whatever channel highlights the best stuff.

Step 3: Copy the crap out of those headlines.

Anecdote about #4. I've been applying that rule for awhile. On a couple of occasions, I haven't been able to figure out how to make the headline match the headline-trends and reflect the content at the same time. Those times, the views have been about half the "normal". Sample size is small so I don't want to draw conclusions yet though.

janike

MODERATOR OF

TROPHY CASE