Go ahead, claim it for yourself :) I prefer not to see my name affiliated with something that implies knowledge of exact numbers where noone even can estimate the percentage....
I did use the "tip-of-the-iceberg" comparison ~10 years ago but I can hardly imagine I was the first. cheers, Toralv > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Rich Kulawiec > Sent: Montag, 10. März 2008 18:17 > To: [email protected] > Subject: [funsec] Has someone else already articulated this? > > If nobody else has, then (in the same wry spirit as > Olbermann's labeling of the Keith Number) I'm gonna slap my > name on it. > But if someone has, then I'll give credit where it's due. > > XXX iceberg principle: for every breach reported by an > organization, there are ten more they're aware of. > For every breach an organization's aware of, there are > ten more they don't know about. > > where "breach" may or may not be the right word; I intend for > this to cover privacy disclosures, security incidents, > exploitable holes, etc. > > ---Rsk > _______________________________________________ > Fun and Misc security discussion for OT posts. > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec > Note: funsec is a public and open mailing list. > Firmensitz: Muenchen Amtsgericht: AG Muenchen Handelsregister: HRB 144340 Geschaeftsfuehrer: Eric F. Brown, Anthony E. Ruiseal Bankverbindung: ABN-Amro Bank N.V. Konto 671 211 9006 UST-ID: DE168122444 _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
