Addressing the Gap in Cloud Security Skills & Training for Developers
Rapid cloud adoption has transformed application delivery and infrastructure management. Despite efficiency gains, organizations face mounting cloud security challenges as…
Security
Friday Squid Blogging: Squid Run in Southern New England
Southern New England is having the best squid run in years. As usual, you can also use this squid post…
Hearing on the Federal Government and AI
On Thursday I testified before the House Committee on Oversight and Government Reform at a hearing titled “The Federal Government…
Report on the Malicious Uses of AI
OpenAI just published its annual report on malicious uses of AI. By using AI as a force multiplier for our…
Cyber security in South Africa
Legislation, Regulations, Challenges According to SABRIC (South African Banking Risk Information Centre), South Africa now rates as the third highest…
BladedFeline: Whispering in the dark
ESET researchers analyzed a cyberespionage campaign conducted by BladedFeline, an Iran-aligned APT group with likely ties to OilRig
Addressing API Security with NIST SP 800-228
According to the Wallarm Q1 2025 ThreatStats report, 70% of all application attacks target APIs. The industry can no longer…
Google Releases Emergency Patch For New Actively Exploited Chrome Zero-Day
Google has recently released an out-of-band security patch to address a high-severity zero-day vulnerability in its Chrome browser. This vulnerability,…
The Ramifications of Ukraine’s Drone Attack
You can read the details of Operation Spiderweb elsewhere. What interests me are the implications for future warfare: If the…
Don’t let dormant accounts become a doorway for cybercriminals
Do you have online accounts you haven’t used in years? If so, a bit of digital spring cleaning might be…