Inspecting Spectre: Here’s How CISOs Can Protect Their Systems

It’s still early in 2018, and we’ve already been hit with one of the widest-reaching security flaws of all time. What makes the recent Spectre vulnerability a serious problem is the fact that it has been in place for 20 years and is the result of optimization for performance. While there are no known, documented…

Details

Evolving Your Cyber Strategy to Turn the Tables on Your Adversaries

As cybersecurity matures as an industry, network defenders understand that preventing attack, while best case, is not foolproof. However, just because an adversary compromises a machine does not mean the battle is lost. In fact, it has just begun. In this article, I’ll describe how evolving your cybersecurity strategy from singleton instance detection to detecting…

Details

2018 is the right time to “shift left” with DevSecOps

When my company launched in October 2015, few security folks even knew what software containers were. We might as well have been securing shipping containers! Development and DevOps teams, on the other hand, already were enthusiastically embracing software containers because of the speed and agility they bring to the application delivery process. Plus, containers enabled…

Details

It’s Time to Stir Security into the DevOps Mix

Creating secure software and systems has never been more challenging. An explosion in the number of devices that hook into company data, coupled with increased mobility and a shift to cloud services and storage, has dramatically increased the potential attack surface of most organizations. More than 9 billion data records have been lost or stolen…

Details

We Need Obi-Wan Kenobi Processors

All of our critical computing devices have a Jar Jar Binks processor. That is, they have little common sense, they’re easy to manipulate, and they’re unable to distinguish good from bad. Just like the floppy-eared version in Star Wars, Jar Jar Binks processors are well-meaning but incredibly easy to trick. This is exactly what allows…

Details