We’re getting excited and stressed out about the impending 5G network that appears will control our lives and all our cities. Will it be as exciting, productive, and lacking of security protocols as we expect? We discuss that and more…
Latest stories
How Much Damage Can the Network at a Hacker Conference Take?
For a normal organization, it would be a year’s worth of malicious traffic. At the Black Hat conference, their network sees the same in about two days. That’s what Neil “Grifter” Wyler (@Grifter801) said about the network behavior he sees…
Defense in Depth: Software Fixing Hardware Problems
As we have seen with the Boeing 737 MAX crashes, when software tries to fix hardware flaws, it can turn deadly. What are the security implications? Check out this post and discussion for the basis of our conversation on this week’s…
25 Tips to Reduce the Frustration of Vulnerability Management
Vulnerability management (VM) has become synonymous with frustration. Breaches often result from exploited vulnerabilities that are known, yet not patched. The compromise was avoidable. Why couldn’t we stop it? The problem stems from security “trying to manage a mountain of…
Do You Know the Secret Cybersecurity Handshake?
We get the feeling that as we’re adding more solutions and requiring more certificates, we’re just making the problem of finding great security talent harder and harder. Has the problem of not enough talent become an issue that we created?…
Defense in Depth: Tools for Managing 3rd Party Risk
Are there any good tools that really help to manage third-party risk? Can tools alone solve this problem? What else is required? Check out this post and discussion for the basis of our conversation on this week’s episode co-hosted by me, David…
What Do Security Vendors Say or Do That Sets Off Your BS Detector?
Due to the popularity of my article, “30 Behaviors of Security Vendors That Set Off a CISO’s BS Detector” I decided to ask the same question to security experts at the Security BsidesSF conference, just ahead of the RSA Conference…
If At First You Don’t Succeed, There’s Always Blackmail
We note that blackmail has become an option even in cybersecurity sales. It appears some vendors have become so desperate that they’ve resorted to borderline criminal activity. This show, like all the previous ones is hosted by me, David Spark (@dspark), founder…
Defense in Depth: CISO Burnout
Are CISOs the most stressed individuals on a security team, or do mental health issues affect everyone in security? Check out this post and discussion for the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the creator…
How Would I Go About Stealing Your Data?
At Security BsidesSF I asked attendees, “How would I go about stealing your data?” A handful said I couldn’t, which is probably true since I’m not a hacker, yet we were surrounded by security professionals and hackers that probably could…