Anyone who has tried to maintain a blog for awhile knows that the marathon of writing and focus needed to keep a blog fresh requires a great deal of sustained effort. Even so, six months between blog posts is a bit much. So I’m working on changing that. (Note, there are other posts on the blog from less than six months ago, but that’s because I’ve back posted some older articles.)
While containers bring the benefits of standardization, isolation, and the principle of least privilege to the development of cloud-based software, they can be a boon for attackers. Containerized applications don’t necessarily introduce any new vulnerabilities, but they do present additional attack vectors.
Security teams increasingly use large data sets from their networks to find hidden threats. Why companies should embark on their own data science and machine learning initiatives.
Secureworks can’t hire cybersecurity pros fast enough. The Atlanta-based firm that helps 4,400 companies worldwide fend off cyberattacks has about 140 openings at more than a dozen locations globally. Yet filling those positions has become a grueling—and often impossible—task.
This year has been an exciting one so far. I’ve tackled a number of data-analysis projects, including investigating data on the cybersecurity workforce shortfall and a deep dive into the National Vulnerability Database.
Until WannaCry and NotPetya, estimates of ransomware cost and damages were likely overblown. But indications are that companies lost hundreds of millions from these malicious attacks alone.
Digging into a data point that has minimal citation finds it is more three years older than expected and came from a completely different source.
February 2017 marked a major anniversary for me: Two straight decades as a journalist and writer.
It’s amazing how quickly a month can pass and how easily a commitment to regularly update your blog goes by the wayside. The past month, I’ve written more than a dozen articles, but two that deal with important events stand out.
Phishing is one of those problems that the security industry is not going to solve. However, they are making it tougher.