Cyber Shelf

// Comparison

Fancy Bear Goes Phishing vs Foundations of Information Security: Which Should You Read?

Two cybersecurity books on Foundations, compared honestly: who each is for, what each does best, and which to read first.

Beginner
4/52023
Fancy Bear Goes Phishing

The Dark History of the Information Age, in Five Extraordinary Hacks

Scott J. Shapiro

Five famous hacks used as a way into the deeper question of why software is insecure at all, written by a Yale law professor who learned to code to write it. More a history and theory of vulnerability than a how-to.

Beginner
4/52019
Foundations of Information Security

A Straightforward Introduction

Jason Andress

Jason Andress' compact tour of the field: confidentiality / integrity / availability, identification and authentication, network and OS controls, written for newcomers and adjacent disciplines.

Read this if

Readers who want the why behind the headlines, the conceptual and historical reasons computers can be broken into, told through memorable cases.
Anyone new to the field who wants the entire territory mapped on a single shelf, in a single short book. Andress is the cleanest tour of CIA, IAM, network, software, operations, and crypto for newcomers.

Skip this if

Practitioners after current technique or precise forensics. Skip this if a non-specialist explaining your field back to you, occasionally over-tidily, will grate.
Anyone who already works in the field. The book is broad and shallow by design; specialists will find every chapter familiar.

Key takeaways

  • Insecurity is not a series of accidents but a structural property of how general-purpose computers and the industry around them are built.
  • The famous hacks are interesting less for their cleverness than for what they reveal about incentives, law, and human nature.
  • Treating hacking as purely a technical problem misses the legal and economic machinery that keeps it profitable.
  • Covers every major domain of security at survey-level depth, which is exactly what a beginner needs to choose a specialization.
  • The operations security chapter is unusually strong for an intro book; most authors skip it because it's unsexy, Andress doesn't.
  • Pairs naturally with one or two deep-dive books per topic from this catalog; treat it as the master index.

How they compare

Fancy Bear Goes Phishing and Foundations of Information Security are both rated 4/5 in our catalog. Pick by topic preference and reading style rather than by rating.

Both books target beginner-level readers, so the choice is about topic, not difficulty.

Fancy Bear Goes Phishing and Foundations of Information Security both cover Foundations, so reading them in sequence reinforces the same material from different angles.

Keep reading

Fancy Bear Goes Phishing

Alternatives to Fancy Bear Goes PhishingWhat to read after Fancy Bear Goes Phishing

Foundations of Information Security

Alternatives to Foundations of Information SecurityWhat to read after Foundations of Information Security

Related topics

Foundations