Don’t Let Failing Banks Distract You from Cyber Threats
Human beings and organizations suffer from a cognitive condition known as recency bias. Recency bias “is a cognitive bias that favors recent events over historic ones. It is the tendency to place too much emphasis on experiences that are freshest in your memory—even...
Does the New National Cybersecurity Strategy Make Threat Modeling Essential?
Are you aware of the National Cybersecurity Strategy announced by the Biden-Harris administration on March 2, 2023? Well, if you develop software, you better be. The goal of the strategy is for the U.S. Government to take the lead in creating a safe and secure digital...
How DevSecOps Can Increase Confidence In Security Architecture
Proliferating threats and increasingly complex IT architectures are putting significant pressure on teams to keep their enterprise systems secure. These trends show no signs of slowing down, which raises the question: How are IT leaders planning to address these...
How Threat Modeling Can Help Minimize Your Application’s Blast Radius
Any piece of code can have a vulnerability. Whether application code or infrastructure code, errors, oversights and misconfigurations happen. The question developers must answer is, how many negative outcomes an attacker could realize because of that vulnerability....
CI/CD: Necessary for modern software development, yet it carries a lot of risk
CI/CD over the past decade has become the cornerstone of modern software development. The term – for continuous integration and continuous delivery (sometimes the “D” also can mean “deployment”) – emerged in the late 2000s with the rise...
Can Threat Modeling Actually Improve Incident Response?
You threat model to identify threats and implement mitigations before you deploy an application. In this regard, the overarching reason for your commitment to do threat modeling is to avoid incident response altogether. Theoretically, an application with no...
Whitepaper: What’s Needed to Turn DevOps into DevSecOps
DevOps is a natural byproduct of the shift to agile software development and the move to the cloud. One of the main benefits of DevOps is the speed of software iteration, based on user stories and development sprints. The drawback to all this speedy development,...
Cyber Insights 2023 | The Coming of Web3
Web3 is a term that has been hijacked for marketing purposes. Since web3 obviously represents the future internet, claiming to be web3 now is a claim to be the future today. Such claims should be viewed with caution – we don’t yet know what web3 will be. Read more...
