Blog

245 - Who is responsible for security?

April 21, 2024

I have just come back from a half week at the excellent London QCon conference, one of my first big conferences in about 5 years for a number of reasons.

244 - Curiosity killed the (backdoor) campaign

April 7, 2024

Jeff Moss spoke at Blackhat a few years back about "superempowered individuals" - people who have more individual power than some nation states due to their combination of skills, placement and curiousity.

243 - What is enterprise security compared to product security?

March 24, 2024

Some weeks I read a blogpost that just perfectly encapsulates a bunch of my own thoughts and things really crystalise together. This week was one of those for me.

242 - Sitting on legacy dynamite

March 10, 2024

We all use the term "legacy" when talking about IT, but it's rare that organisations actually recognise the real risk that it poses.

241 - Protecting the edge

March 3, 2024

The edge of our systems are both the most vulnerable and the most critical of our systems.

240 - Commoditisation of Capability

February 25, 2024

There's a concept that's been floating around for decades called the commoditization of process or commoditisation of capability.

239 - How do we learn technical skills?

February 11, 2024

My background is long and deeply nerdy.

238 - Living in the future is both bright and scary

February 4, 2024

We live in the future and we're going to have to accept it.

237 - Who bears the burden of security?

January 28, 2024

There's a common view amongst security professionals that everything would be better if users just cared more about security.

236 - Data lies beyond the organizations border

January 14, 2024

I start this weeks newsletter with a mea-culpa. Last week was of course not the first week of 2025, so I want to thank all of the people (and there were quite a few) who reached out to let me know that we have only just entered 2024! I always like to hear from people and I find it quite ironic that in a newsletter where I expressed that I liked to have my opinions challenged, I made such a simple error and so many people promptly challenged me on it!

235 - New year, new start

January 7, 2024

Welcome to the first newsletter of 2025, and apparently the 235th newsletter that I've written!

234 - Are you having a productive week?

December 17, 2023

Productivity is one of those mythical things that's almost impossible to measure for 99% of human endeavour.