How Threat Modeling is Being Reinvented Today
Threat modeling actually goes back further than you might think. Depending on what you choose as the starting point for the first threat model, you can trace it back to the 70s, 80s or 90s. Regardless of the particular starting point, one thing is for sure. From that...
DevSecOps Engineer: An Emerging Cybersecurity Career Path
With more and more organizations relying on cloud-based tools to fuel their digital transformation projects and drive future growth, quickly developing and deploying applications has never been more important. At the same time, securing code against vulnerabilities...
DevSecOps and the Evolution of Threat Modeling
Threat modeling has become an integral part of the software development process, providing developers with an opportunity to identify security threats and vulnerabilities and create logical remediation methods. Read the full article here If you’d like to learn more...
Why it’s Important to Build a Threat Modeling Culture
There’s a difference between building a threat model and creating a threat modeling culture. To be sure one is part of the other, but to understand the difference requires an analogy. Imagine threat modeling as bodybuilding. Building a threat model would be your...
How to create and manage a rock-solid DevSecOps framework
Security has long been treated as an afterthought in software development. Developers work to create effective code but only consider software security in the testing and deployment stages of the development lifecycle. With accelerating intellectual property theft,...
A New Type of Cryptomining Attack Aims to Hijack Network Bandwidth
Researchers on Tuesday found a new type of crypto-mining attack in the wild that’s designed to hijack network bandwidth. Read the full article here If you’d like to learn more about ThreatModeler’s capabilities, you can contact us here.
A Case for Automated Threat Modeling
Nobody thinks modeling threats is a bad idea. And yet threat modeling isn’t broadly adopted in the development community yet. Why is that? According to Izar Tarandach and Matthew J. Coles in their book Threat Modeling, it’s because “convincing stakeholders that threat...
A Glimpse Into the Future of Threat Modeling
Like everything else in the world of cybersecurity, threat modeling tools and practices continue to evolve. How is threat modeling evolving? There are five areas where we will continue to see improvement in the future. These are 1) collaboration; 2) ease of use; 3)...
