Best of 2024: If You are Reachable, You Are Breachable, and Firewalls & VPNs are the Front Door
Firewalls and VPN appliances are critical gateways. Like all on-prem systems, a vulnerability can lead to a compromise that is used to open the door for attackers. ... Read More
If You are Reachable, You Are Breachable, and Firewalls & VPNs are the Front Door
Firewalls and VPN appliances are critical gateways. Like all on-prem systems, a vulnerability can lead to a compromise that is used to open the door for attackers. ... Read More
Update on the Executive Order on Improving the Nation’s Cybersecurity
New executive orders on cybersecurity are always packed with positive-sounding actions with assigned deadlines. The Biden administration’s EO on improving the nation’s cybersecurity came in the wake of the SolarWinds and Colonial Pipeline attacks. Its major components were a call for MFA, zero-trust and EDR across federal agencies. It also ... Read More
Is the Market for Hardware Security Appliances Doomed?
When enterprise firewalls were introduced in the mid-1990s, they served a critical function. By enforcing network connection policies, they made it possible for organizations to connect their still-evolving corporate networks to the internet. As threats expanded, more and more functionality was added to those devices. Encrypted connections were one of ... Read More
Barbary Pirates and Russian Cybercrime
In 1801, the United States had a small Navy. Thomas Jefferson deployed almost half that Navy—three frigates and a schooner—to the Barbary Coast of northern Africa. The Barbary States had been the scourge of the seas for centuries. They raided coastal towns along the Mediterranean, British Isles and west African ... Read More
How Public Cybersecurity Companies Performed in 1H 2021
A good way to monitor the overall health of the IT security industry is to track the publicly traded companies in the space. I previously reported on the performance of 20 cybersecurity companies in 2020. This is an update on those 20 companies with the addition of newly minted SentinelOne, ... Read More
Top 20 Fastest Growing Cybersecurity Companies in Q1 2021
If you track 2,635 cybersecurity companies, as I do, how do you know which ones to pay attention to? Those with PR teams that reach out to brief you? They often have a great story to tell and have some interesting new technology to demonstrate. New funding rounds at high ... Read More
The Establishment of a Cyber Safety Review Board
In 2013, the Obama Administration began asking what government could do to improve cybersecurity. By February 2014, Farnam Jahanian, Assistant Director for Computer and Information Science and Engineering at the National Science Foundation, convened a three-day “idea lab” to come up with suggestions. You can see the resulting report, titled ... Read More
A Cyber Executive Order For the 21st Century
The long-expected Executive Order On Improving the Nation’s Cybersecurity was published Wednesday, May 12, 2021. My initial reaction is positive. It calls for using multifactor authentication and encryption within Federal agencies after all, things that became established best practices 20 years ago. The EO is focused on improving cybersecurity for ... Read More
Of Pipelines And Cybersecurity
One of the scariest phrases I have ever encountered is “gasoline pipeline” –thousands of miles of three foot diameter pipes buried in the ground for decades carrying billions of gallons of one of the most dangerous substances we encounter every day. Reading about Colonial Pipeline shutting down its “network” on ... Read More
