Adam Shostack

JANUARY 2, 2025

Threat Modeling Brett Crawley released Threat Modeling Gameplay with EoP: A reference manual for spotting threats in software architecture , published by Packt, a full book on the game. The most important stories around threat modeling, appsec and secure by design for August, 2024. I was honored to write the Foreword.)

Architecture 130

Architecture Threat Detection Software Media 130

The Last Watchdog

APRIL 15, 2025

Bezos launching Amazon with a single book, and Googles Brain Team engineering the transformer architecture that underpins todays GenAIthese are milestones on the same arc. Jeff Bezos sells his first book on a novelty called Amazon.com in 1999. Fast-forward 560 years.

Artificial Intelligence 147

Artificial Intelligence Engineering Government Retail 147

Adam Shostack

JANUARY 2, 2025

Lastly, I'm interviewed as part of Ed Moyle & Diana Kelley's new book, " Practical Cybersecurity Architecture ," now available for pre-order. At 6PM BST (London) today the 23rd, I'll be joining Gamification of threat modelling using OWASP Cornucopia with Grant Ongers.

Architecture 130

Architecture Technology Cybersecurity 130

Notice Bored

MARCH 10, 2021

Siegel and Mark Sweeney Publisher: Auerbach/CRC Press ISBN: 978-0-367-45817-1 Price: ~ US$100 + shipping from Amazon Outline This book lays out a systematic process for developing corporate strategy in the area of cyber (meaning IT) security and resilience. The book makes it a little easier. This stuff is hard.

Architecture 56

Architecture Risk InfoSec Government 56

SecureWorld News

SEPTEMBER 6, 2024

The inspiration for my book, Soft Skills in Technical Sales , came from observing changes in the roles of sales engineers and salespeople. As the VP of Solution Architecture at Herjavec Group, I've done my share of selling and participated in many sales calls with vendors. Initially, I thought the book would consist of a few articles.

Engineering 112

Engineering Architecture Technology Cybersecurity 112

Adam Shostack

JANUARY 2, 2025

Google discussed the impact of Memory Safe Languages in Android 13 by Jeffrey Vander Stoep The unsafe language doom principle is an interesting blog on the topic by William Woodruff Survey of security mitigations and architectures, December 2022 , by Saar Amar of Microsoft, but covering a lot of neat improvements in Apple and Linux as well.

Architecture 130

Architecture 130

Adam Shostack

SEPTEMBER 23, 2020

Lastly, I’m interviewed as part of Ed Moyle & Diana Kelley’s new book, “ Practical Cybersecurity Architecture ,” now available for pre-order. At 6PM BST (London) today the 23rd, I’ll be joining Gamification of threat modelling using OWASP Cornucopia with Grant Ongers.

Architecture 100

Architecture Technology Cybersecurity 100

Krebs on Security

JULY 24, 2020

.” Fully 85 percent ranked networking as a critical or “very important” skill, followed by a mastery of the Linux operating system (77 percent), Windows (73 percent), common exploitation techniques (73 percent), computer architectures and virtualization (67 percent) and data and cryptography (58 percent).

Cybersecurity 364

Cybersecurity Architecture Hacking Engineering 364

SecureWorld News

APRIL 8, 2021

Undefined semantics are nooks and crannies of the computing architecture—for example the location, format, and content of program code. was discussing his recent book about fixing cybersecurity. This is from the back cover of his book: "In The Cyber Conundrum. He told the audience that security needs a game changer.

CISO 130

CISO Encryption Engineering Telecommunications 130

IT Security Guru

SEPTEMBER 25, 2023

I remember when I set out in IT Architecture and was making the switch to Cybersecurity. For example, I experienced first-hand when I started in this sector that the cost of books, courses and accreditations was and remains astronomical. I wrote several books to share knowledge with those embarking on a career in cybersecurity.

CISO 133

CISO Identity Theft Cybercrime Cybersecurity 133

Security Boulevard

JULY 12, 2021

Plus, he gives a preview of his latest book called “ The Lean Approach to Digital Transformation.”. Jedidiah Yueh: Would you please share with us what inspired the book? The subtitle of the book is “From Customer to Code,” and the book says you have to master both. Otherwise, they'll be in trouble. Then it's about tools.

Mobile 111

Mobile Manufacturing Digital transformation Engineering 111

Duo's Security Blog

APRIL 26, 2022

Like many tech companies, we originally adopted a three-tier architecture — consisting of load balancers, servers and databases. This three-tiered architecture is great, but also comes with its own set of challenges, which Duo and many companies have sought to mitigate with their own internal tooling.

Architecture 98

Architecture Engineering Technology Software 98

SC Magazine

FEBRUARY 19, 2021

Microsoft closed the book on the SolarWinds investigation. Vectra Chief Technology Officer Oliver Tavakoli applauded Microsoft’s endorsement of a zero trust architecture. Microsoft). Greenlight President Kevin Dunne said it “marks the first step in the process of the security community recovering from the Solorigate attack.”

Authentication 90

Authentication Architecture Threat Detection Accountability 90

Cisco Security

FEBRUARY 2, 2023

It’s the first of the Four Agreements – a set of universal life principles outlined in the bestselling book by Don Miguel Ruiz. Be impeccable with your words. Being impeccable with your words’ is my favorite, and it’s no surprise. The phrase zero trust does not inspire trust, clarity, or transparency.

Marketing 145

Marketing Authentication CISO Architecture 145

Security Affairs

SEPTEMBER 23, 2018

Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal. Feedify cloud service architecture compromised by MageCart crime gang. The best news of the week with Security Affairs. 20% discount. Kindle Edition. Paper Copy. Once again thank you!

Computers and Electronics 86

Computers and Electronics Cryptocurrency Spyware Data breaches 86

SecureWorld News

NOVEMBER 9, 2022

Can you do more in that space? Or is that just too much of a reach?

InfoSec 98

InfoSec Internet Internet Encryption 98

CyberSecurity Insiders

FEBRUARY 12, 2021

T he project and its contributors are aiming to work with ride-share service providers to create a software architecture which will enable consumers to access their automated vehicle with driver identity details stored on their mobile device.

IoT 84

IoT Architecture Authentication Technology 84

SecureList

MAY 11, 2023

Security researchers discovered an archive that contained test builds of the malware for a number of less common platforms, including macOS and FreeBSD, as well as for various non-standard processor architectures, such as MIPS and SPARC. As for the second trend, we saw that BlackCat adjusted their TTPs midway through the year.

Ransomware 139

Ransomware Malware Architecture Telecommunications 139

The Last Watchdog

AUGUST 29, 2019

A few key takeaways: Sticks & carrots Poor security practices at British Airways resulted in hackers pilfering credit card information, names, addresses, travel booking details and logins for some 500,000 airline customers. For a full drill down on our meeting, give a listen to the accompanying podcast. million, on average.

Big data 153

Big data Data breaches Digital transformation Architecture 153

SecureWorld News

MARCH 13, 2024

Over 16 years at the Herjavec Group, I progressed from a Professional Service Engineer to leading several teams, eventually serving as the Vice President of Architecture. A : If I were to be completely selfish, I would say Architecture, but honestly, everything is important. I am also a big believer in people skills/soft skills.

Cybersecurity 102

Cybersecurity Architecture Firewall Banking 102

CyberSecurity Insiders

JANUARY 26, 2022

Each year, O’Reilly gathers usage data across its publishing partners and learning modes, from books and videos to live online training courses, virtual events, practice exams, and interactive scenarios, to provide technology leaders with the trends, topics, and issues to watch in the coming year.

Data breaches 84

Data breaches Cybersecurity Cryptocurrency Technology 84

Security Boulevard

OCTOBER 16, 2024

They are also helpful when adopting a zero trust architecture. See how FireMon security cloud protects users and applications BOOK A DEMO Five main NIST Frameworks NIST offers five frameworks, each designed to address specific aspects of cybersecurity, data risk management , privacy, and workforce development.

Risk 111

Risk Government Healthcare Cybersecurity 111

BH Consulting

APRIL 16, 2025

Although the core architecture hasnt shifted drastically, he said the risk landscape has. He then covered over the air (OTA) listening using blogs, books and videos, then shortwave listening which, interestingly, requires no licence. Cloud calls for cooperation in a changed risk landscape Has computing really changed with the cloud?

Risk 59

Risk Government Ransomware Retail 59

Duo's Security Blog

JULY 19, 2021

The project is a major re-architecture and redesign of the Duo multi-factor authentication experience. For example, mobile applications such as Yelp requested your Gmail address book to encourage more signups by emailing your contact list on your behalf. This blog is part of an ongoing blog series for Duo’s Universal Prompt Project.

Authentication 130

Authentication Passwords Banking Architecture 130

SC Magazine

FEBRUARY 19, 2021

Microsoft closed the book on the SolarWinds investigation. Vectra Chief Technology Officer Oliver Tavakoli applauded Microsoft’s endorsement of a zero trust architecture. Microsoft). Greenlight President Kevin Dunne said it “marks the first step in the process of the security community recovering from the Solorigate attack.”

Authentication 65

Authentication Architecture Threat Detection Accountability 65

eSecurity Planet

JUNE 25, 2025

You don’t need to share your phone number, email, or address book. Zero-knowledge architecture: Encrypts all data so that even the service provider cannot access your messages, files, or contact lists. Because it’s free and open-source, it’s a great pick if resilience and censorship resistance are top priorities for you.

57

57

NetSpi Technical

JULY 16, 2024

LLMs are advanced AI systems developed by training on extensive text corpora, including books, articles, and websites. This quickly informs a user that the chatbot’s architecture includes an interface with the underlying operating system, allowing it to indirectly perform functions beyond simple text generation.

Penetration Testing 119

Penetration Testing Authentication Architecture Risk 119

Notice Bored

APRIL 20, 2022

I have in mind consultancy, advisory and other specialist services such as: Building and construction services e.g. architecture, surveying; B usiness services e.g. marketing and sales, strategy and management consulting, auditing, quality consulting; E ngineering services e.g. electrical and electronic design, materials science, measurement and calibration; (..)

Risk 72

Risk Energy and Utilities Computers and Electronics Telecommunications 72

Kali Linux

JANUARY 29, 2018

You’ve likely heard about the first, official Kali Linux book: Kali Linux Revealed, Mastering The Penetration Testing Distribution available from OffSec Press. We’ve made the book available for free in both online HTML and PDF versions because we love you. So why are we selling a book and giving it away?

Penetration Testing 52

Penetration Testing Encryption Firewall Social Engineering 52

Andrew Hay

DECEMBER 2, 2019

In 1887, the first book on tornadoes was written by John Park Finley , a US Army Signal Service officer and pioneer in the field of tornado research. Finley’s book introduced the concept of a “tornado cave” that instructed readers to “get into it with your family and your treasures before the storm reaches you.”

Architecture 69

Architecture Risk Engineering Accountability 69

Jane Frankland

MARCH 16, 2023

of jobs in engineering and architecture occupations. Now I want to hear from you… If you want to understand how we can work together book a DISCOVERY CALL. According to UNESCO , out of all engineering graduates, women account for only 28%, and out of computer science and informatics graduates, they make up a mere 40%.

Education 130

Education Technology Engineering Architecture 130

Security Boulevard

OCTOBER 23, 2024

Book a consultation with our ICS security experts now. Talk to our OT security program expert now through a free consultation to figure out your next steps. 62443, NIST CSF, and NIST SP 800, talk to a Sectrio OT governance expert. Contact Us Thinking of an ICS security training program for your employees?

Architecture 69

Architecture Risk Government Engineering 69

Veracode Security

FEBRUARY 23, 2021

Java Cryptographic Architecture. Blogs/Conferences/Books. Book Title - Serious Cryptography - Jean Philippe Aumasson. Book Title - Understanding Cryptography - Christof Paar & Jan Pelzl Make sure Secret Key (K) is safeguarded and is of minimum 128 bits in length. References. Oracle/Java Documentation: 1. Standards.

Authentication 72

Authentication Encryption Architecture Risk 72

The Last Watchdog

OCTOBER 19, 2021

I highly recommend reading Zuboff’s New York Times Book of the Year, The Age of Surveillance Capitalism: The Fight for A Human Future At the New Frontier of Power as well as viewing Rifkin’s riveting speech, The Third Industrial Revolution: A Radical New Sharing Economy.

Internet 223

Internet Cryptocurrency Internet Software 223

eSecurity Planet

MAY 20, 2024

6 Benefits of Digital Rights Management 5 Challenges & Limitations of DRM Common Use Cases of DRM-Protected Contents DRM License Models & Architecture 6 DRM Technologies to Use Now Legal Considerations of DRM Frequently Asked Questions (FAQs) Bottom Line: DRM Provides Special-Use Encryption How Does Digital Rights Management (DRM) Work?

Encryption 62

Encryption Architecture Software Technology 62

Security Boulevard

AUGUST 29, 2022

Except for a few “off-the-books” emergency budget requests to cover things cybersecurity insurance claims the provider did not pay, the CISO and CIO pretty much know how many “swords” they have to work with to support 24x7x365 security monitoring and operations. SOAR automation expertise supporting an adaptive security architecture.

Risk 98

Risk Insurance Cybersecurity Engineering 98

Security Boulevard

NOVEMBER 20, 2023

Get unprecedented visibility into the origins of attacks, the campaign infrastructure being used, and the architecture likely to be used against you in the future. HYAS Insight provides threat and fraud response teams with never-before-seen visibility into everything you need to know about an attack.

Malware 72

Malware Spyware DNS Architecture 72