The best APT definition yet

Interesting article on some of the dynamic domains used in the RSA heist, but Krebs, in his usual fine form, nailed it with this statement:

"Much of the speculation about the attacks on RSA so far has invoked the term "advanced persistent threat", or APT, which is security industry shorthand for "We're pretty sure it came from China.""

You can read the whole article here.

Stolen RSA SecurID data. That's data, as in Data Loss Prevention

I certainly can't be the only one wondering how a 2010 Gartner magic quadrant DLP vendor managed to get its own data "lossed". That's almost too stupid to be ironic.