Latest news & articles
The Pyramid of Pain
To illustrate this concept, I have created what I like to call the Pyramid of Pain. This simple diagram shows…
The Information Security Leader, Part 1: Two Distinct Roles, Four Fundamental Questions and Three Persistent Challenges
If you always do what you’ve always done, you’ll always get what you’ve always got.” This kernel of wisdom comes…
The Security Cost of Free Smartphone Apps
There are hundreds of thousands of them to choose from now whether you have an iPhone, an Android or some…
Russian Threat Group Targets Clinton Campaign
Governments like to know what the leaders of rival countries are really thinking. To answer these questions, they may turn…
Best Practices for Confidence in the Cloud
Until recently, most cloud migration decisions were made without the benefit of the CISO's guidance. In an effort to take…
Malware Lingers with BITS
Threat actors leveraged a “notification” feature in the Windows Background Intelligent Transfer Service (BITS) to download malware. In May 2016,…
