International Womens Day

“Just because something works doesn’t mean it can’t be improved.” ~ Black Panther: Princess Shuri

I watched Black Panther this weekend, and outside of being gob-smacked by a brilliant script, soundtrack, sets, cinematography, I fell in love with Princess Shuri. Yes, the time is right for a 16-year old R&D Scientist with a message I want to send to every engineering department in the world ... Read More
The Meltdown Over Spectre

The Meltdown Over Spectre

Do you know to whom you owe a first debt here at the start of 2018? I do. I’d like everyone to pause, and in their minds and hearts say thank you to the hundreds of engineers at various hardware, software, and security vendors who spent their holidays working on ... Read More
Cyber Security Predictions

Nation State Activity – The continuing story for 2018

Well, I called it at the end of 2016. 2017 was a slurry of accusations as well as actual proof found of Russian meddling in U.S. politics via both state infrastructure systems and with regards to online propaganda on social media. Even more specifically, I also correctly called the meddling ... Read More
Interview with an AppSec Professional: Designing an AppSec from the Inside Out

Interview with an AppSec Professional: Designing an AppSec from the Inside Out

/
While it’s difficult to get permission from one’s corporate communications team or legal department on chatting with vendors, I was able to secure an interview with one of our financial services customers who use both Dynamic and Source code scanning. Naturally, securing the financial and personal information of their customers ... Read More
cyber security regulation

The New York Cyber Security Regulation: An Application Security Perspective

/
I was reading through the New York City Department of Financial Services Cybersecurity Regulation – because what do you read when you’re in a hotel room in Las Vegas? Per usual, application security didn’t get a very long mention. I’m increasingly certain this is because most of the writers of ... Read More
Good Security Questions vs Social Media

Good Security Questions vs Social Media

/
I saw another meme go by on Facebook. This one challenged everyone’s memory to name all their Elementary School teachers. And I had more than ten friends participate, which resulted in me yelling at my computer screen again. People, people – did you learn nothing from my Danger Memes blog? ... Read More
Data Officers and the GDPR

Data Officers and the GDPR

/
IDC predicts that by 2020, data breaches will affect nearly 25% of the world’s population. Last April, the European Commission ratified The General Data Protection Regulation (GDPR), which covers the capture, control, and consent to use personal information. This new regulation goes into effect next May 25, 2018. Who does ... Read More