Blog

245 - Who is responsible for security?

I have just come back from a half week at the excellent London QCon conference, one of my first big conferences in about 5 years for a number of reasons.

244 - Curiosity killed the (backdoor) campaign

Jeff Moss spoke at Blackhat a few years back about "superempowered individuals" - people who have more individual power than some nation states due to their combination of skills, placement and curiousity.

243 - What is enterprise security compared to product security?

Some weeks I read a blogpost that just perfectly encapsulates a bunch of my own thoughts and things really crystalise together. This week was one of those for me.

242 - Sitting on legacy dynamite

We all use the term "legacy" when talking about IT, but it's rare that organisations actually recognise the real risk that it poses.

241 - Protecting the edge

The edge of our systems are both the most vulnerable and the most critical of our systems.

240 - Commoditisation of Capability

There's a concept that's been floating around for decades called the commoditization of process or commoditisation of capability.

239 - How do we learn technical skills?

My background is long and deeply nerdy.

238 - Living in the future is both bright and scary

We live in the future and we're going to have to accept it.

237 - Who bears the burden of security?

There's a common view amongst security professionals that everything would be better if users just cared more about security.

236 - Data lies beyond the organizations border

I start this weeks newsletter with a mea-culpa. Last week was of course not the first week of 2025, so I want to thank all of the people (and there were quite a few) who reached out to let me know that we have only just entered 2024! I always like to hear from people and I find it quite ironic that in a newsletter where I expressed that I liked to have my opinions challenged, I made such a simple error and so many people promptly challenged me on it!

235 - New year, new start

Welcome to the first newsletter of 2025, and apparently the 235th newsletter that I've written!

234 - Are you having a productive week?

Productivity is one of those mythical things that's almost impossible to measure for 99% of human endeavour.