Infosec: When in Doubt, Leave it Out

Allow me to intro­duce one of my biggest peren­ni­al pet peeves: the act of shar­ing way too much infor­ma­tion.

Call it pro­fes­sion­al­ism, para­noia, or com­mon sense, when it comes to the abil­i­ty to share infor­ma­tion about each oth­er and our­selves online, the old adage applies: “With great pow­er comes great responsibility.”

At the low end of the spec­trum, giv­ing the world too much of your­self may be mild­ly enter­tain­ing (or in oth­er cas­es annoy­ing) to the oth­er users who stum­ble across your Face­book page and can sud­den­ly fig­ure out how many times in a day you go to the wash­room or re-blog embar­rass­ing pho­tos. On the oth­er side of things, if you’re not care­ful it’s fright­en­ing­ly easy to end up shar­ing infor­ma­tion that could cause direct and seri­ous harm to rep­u­ta­tion, finances, and fam­i­ly mem­bers. A com­mon phe­nom­e­non to all parts of this is the per­sis­tence of data, where hurt­ful com­ments and regret­table dis­clo­sures can come embar­rass­ing­ly home to roost at a much lat­er time, some­times years or decades down the road thanks to today’s per­fect storm of auto­mat­ed archiv­ing ser­vices and unpre­dictable human interfaces.

