Security


So I promised yesterday that I would continue the discussion of the rampant foolishness that is “WannaCry” – and more importantly the lessons that we can learn from it.  I talked yesterday about what I perceive to be issues with the way that we as an industry responded from a communication standpoint (i.e. the “festival of half-cocked media evangelism”), but there is another lesson to learn I think as...

Read More

So you maybe noticed there was some ransomware going around recently?  Sure you did.  If you’ve been in a coma for the past three days, a few things you need to know: she isn’t really your fiance (and she’s going to wind up with Bill Pullman anyway so don’t get too upset about it) and everyone is just getting over the WannaCry malware that was ransoming files and spamming the internet over the weekend. Events...

Read More

I’ve been interested in Bitcoin for a while now.  In fact, I’ve covered it in the past in this blog some years back for those that remember these things…  but an idea occurred to me today that I wanted to share with you before I leap into the workday (where, coincidentally, I’m working on guidance around Blockchain). It relates to an article that I came across regarding the Bitcoin “mining...

Read More

I’ve noticed a trend.  Namely, that individual political inclinations – and the reservations that we have talking about politics for fear of treading on those inclinations – are having a “chilling effect” on accurate and thorough discussions in the community about adversaries and their tradecraft. At least this seems to be true as it pertains to election interference discussions specifically. Now, I...

Read More

I saw an article today about some of the changes being discussed by Microsoft in regards to future Windows application development and their plans for Windows over the long term.  It’s an interesting  article — mostly focusing on the history of the Win32 API, what the future of that might be under Windows 10 S, and speculating about some of the reasons why it is that there are still so many Win32 apps lo these many years...

Read More

Everybody has some experience with vaporware, right?  That thing that you buy that you think is going to solve all your problems and then turns out to not really do much of anything. In the security world, this is now – and has been for years – a major problem.  For example, I once recall being in a shop that purchased a web scanning tool (one that was given a 5 star review from a respected trade publication that I...

Read More