The Security Mindset Problem
Security requires a particular mindset. Security professionals (at least the good ones) see the world differently. They can't walk into a store without noticing how they might shoplift. They can't use...
Category
Security
Vigilance, threat models, and incident reflections
New York's 3D Printer Bill Won't Stop Ghost Guns, But It Will Stop You From Fixing Your Blender
New York is considering a budget bill (S.9005/A.10005) that would require all 3D printers sold in the state to include "blocking technology" that scans every print file through a "firearms blueprint...
When Critical Isn't Critical
Last week I was reviewing a vulnerability scan report for a client when something caught my eye. Buried in a list of "critical" findings was a Log4j vulnerability - you know, the one that broke the...
Hey HDSB - Security is EVERYONES problem.
Tonight I received the following email from the Halton District School Board: To summarize the email - Edge Imaging, a vendor tasked with managing school photographs for yearbooks during the 2022-2023 and 2023-2024 academic years, experienced a data breach. This breach occurred within the vendor's