A lot of security is self taught since there arent many classes for it. A good start is looking at Security Engineering: A Guide to Building Dependable Distributed Systems. This was the textbook recommended to me by a security prof at my school
The statement about deaths due to drugs pumps came from this book: https://www.amazon.co.uk/Security-Engineering-Building-Dependable-Distributed/dp/1119642787.
It's a marvelous and very readable book, I don't have exact chapter and verse but will look it up tomorrow and post.
There's a very good account of the whole tale in the book Security Engineering (https://www.amazon.co.uk/Security-Engineering-Building-Dependable-Distributed/dp/1119642787). There's an older version available free online, but I'm not sure if it covers this story. The failures were spectacular - how can you prosecute people without asking, " could we be wrong? ".
Just started reading https://www.amazon.com/Security-Engineering-Building-Dependable-Distributed/dp/1119642787/
Despite being a tome (1100 ish pages) already enjoying it. Besides the typically covered topics (threats, attacks, crypto, defenses, some basic psychology) I'm surprised it's going as deeply as it does in economics (behavioral economics, auction theory)
​
!ping CYBERSECURITY
When I got my Security+ (which is one of the more useful certs) I retained damn near nothing, because what the book taught and what the test checked for was all stuff I could have googled anyways. It was nice to have it gathered all in one place, but the only reason I bothered was to tick some stupid box required by my employer.
Forget the cert for a moment -- what's it trying to teach you? Or, more accurately, what does having it supposedly convince someone else that you know? If it's security, then learn security, i.e. get the mindset and the basics down first. Worry about the cert last.
These are the books that worked for me:
Silicon Snake Oil: Second Thoughts on the Information Highway, by Clifford Stoll
Database Nation: The Death of Privacy in the 21st Century, by Simson Garfinkel
Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World, by Bruce Schneier
Don't misunderstand -- I have a lot of respect for security, but I never expected to learn what I really needed to know by studying for (or getting) a cert.
Hope this helps.
My source is this book, https://www.amazon.co.uk/Security-Engineering-Building-Dependable-Distributed/dp/1119642787.
Earlier editions are available free online.