Five of my articles were published this week: Four on Dark Reading and another on README.security (which now defaults to Synack's domain, since they own it). Among the major issues, the cybersecurity jobs market is looking less strong, and companies are looking to managed services to simplify security in …
Continue Reading
Lots of global coverage this week. Security researchers exposed Iran's use of cyber centers to hide the activity of their advanced persistent threat (APT) groups, while US officials warned that China's state-sponsored actors were 'pre-positioning' to attack US critical infrastructure, as an adjunct to a physical conflict, such as an …
Continue Reading
I wrote three articles this week, including efforts by the the US federal government to help critical infrastructure firms to defend against increasing cyberattacks on water suppliers and wastewater utilities. Also, researchers are delving into the security risks associated with the rapid adoption of large language models, indicating that many …
Continue Reading
I wrote four articles this week. The Charming Kitten-related cyber-espionage group, linked to Iran's Mint Sandstorm APT, is reportedly posing as legitimate journalists and researchers to gather intelligence on the Israel-Hamas war, showcasing a sophisticated method of targeting educators and researchers. I also covered the rise in cyberattacks, which is …
Continue Reading
I just had a couple of article publish this week. The interest in passkeys seems high, so I explored what developers need to be doing to implement passkeys. In addition to that, I covered the likely impact of the settlement of Merck's cyber insurance providers with the pharmaceutical company.