I was writing a post last week about the misunderstandings happening after some young whippersnappers started poking around in COBOL. So, after a 25-year hiatus from the language, I decided … Continue reading “How Legacy Code Confounds Modern Audits”
Author by:
Dan G
QR Codes: slightly better than SMS
Let’s talk about QR codes. Just last weekend, I went to a new restaurant and, scanning the table for a menu, was handed a coaster with a pixelated square. Groaning, … Continue reading “QR Codes: slightly better than SMS”
North Korean Hackers Targeting Job Seekers
There’s something about kicking people when they’re down that really rubs me the wrong way. North Korean hackers are targeting freelance developers with fake job interviews, tricking them into installing … Continue reading “North Korean Hackers Targeting Job Seekers”
RSAC 2025 Cyber Leaders Forum
I’m thrilled to share that I’ll be speaking at the RSA Conference Cyber Leaders Forum as both a program committee member and will be presenting two “Hot Topics” (short, interactive … Continue reading “RSAC 2025 Cyber Leaders Forum”
Cyberslipping
The World Economic Forum’s Global Cybersecurity Outlook 2025 report highlights a concerning trend: despite the escalating risks posed by traditional and AI-driven attacks, many companies are still disturbingly complacent about … Continue reading “Cyberslipping”
Searching for the Lone Needles in a Cosmos of Haystacks
There’s nothing like bonding over science with your seventh grader to make you feel both proud and profoundly inadequate. My son and I recently tackled his honors science project by … Continue reading “Searching for the Lone Needles in a Cosmos of Haystacks”
Categories: Security
Author Dan GPosted on 3 Comments on tl;dr – A Wonk’s Guide to Effective Vulnerability Management
Author Dan GPosted on 3 Comments on tl;dr – A Wonk’s Guide to Effective Vulnerability Management tl;dr – A Wonk’s Guide to Effective Vulnerability Management
I published a rather lengthy blog post about the importance of patch management to the success of a security program. Due to the length of the post I thought I’d … Continue reading “tl;dr – A Wonk’s Guide to Effective Vulnerability Management”
Categories: SecurityAuthor Dan GPosted on 3 Comments on A Wonk’s Guide to Effective Vulnerability Management
Author Dan GPosted on 3 Comments on A Wonk’s Guide to Effective Vulnerability Management A Wonk’s Guide to Effective Vulnerability Management
I’m going to cover something that arguably has the greatest impact on the security posture of an organization and is not something that information security is typically responsible for. It’s … Continue reading “A Wonk’s Guide to Effective Vulnerability Management”
This is the best take I’ve seen regarding the Twitter files distraction
What CISO’s really mean when they say “threat”
When I hear a CISO speaking about threats on an information security podcasts I know most everyone probably thinks they are talking about nation-state or criminal actors. The truth is … Continue reading “What CISO’s really mean when they say “threat””