Ex-CISA officials, CISOs dispel ‘hacklore,’ spread cybersecurity truths

Afraid of connecting to public Wi-Fi? Terrified to turn your Bluetooth on? You may be falling for “hacklore,” tall tales about cybersecurity that distract you from real dangers. Dozens of chief security officers and ex-CISA officials have launched an effort and website to dispel these myths and show you how not to get hacked for real.

Hacklore combines hacking and folklore, and Hacklore.org “exists to separate myth from reality” and instead provides useful tips about how to protect data and devices. Think: install patches, keep software up to date, use strong passwords and passkeys, and turn on multi-factor authentication, as opposed to avoiding public Wi-Fi and never scanning QR codes. 

Both of the latter made the list of outdated advice security leaders want to retire, and those 86 security leaders include former CISA director Jen Easterly, ex-CISA senior advisor and former Yahoo CISO and first-ever Democratic National Committee chief security officer Bob Lord, Microsoft Deputy CISO Geoff Belknap, ex-Uber CISO Joe Sullivan, Google Chrome VP Parisa Tabriz, and many, many others.

Read more at The Register