- Social Engineering Attackers Are Attracted to Email Like Flies to Honey
Email contains business plans, credentials, and sensitive data that attackers harvest after compromising systems—either from local PST files or directly from Exchange servers. Mitigations include...
- Leadership Breaking Down the Walls Between Application and Infrastructure Security
When separate teams run application security and infrastructure security, attackers exploit the gap between them and you spend on the wrong risks. The technology has already merged the two domains,...
- Leadership Presentations, Webcasts and Speaking Engagements
- Social Networking Security Scoreboard - "Yelp" for Enterprise Security Products?
- Leadership The Worrisome State of the Cybersecurity Industry
What's most telling about the security community's long list of complaints is how little it has changed over the years. Tools that don't fit our needs, vendors that overpromise, spending divorced...
- Risk Management Non-Financial "Currency" for Framing Security Discussions
Frame security discussions using internal "currency" beyond dollars—reputation, service availability, trade secrets. Also consider individual concerns: looking bad in front of managers, being fired...