Lohrman on Security

FEBRUARY 4, 2024

Read this book by Daniel Shoemaker, Ken Sigler and Tamara Shoemaker. Looking for a handbook for teaching the cybersecurity body of knowledge in a conventional classroom setting?

Cybersecurity 214

Cybersecurity 214

Adam Shostack

JANUARY 2, 2025

Rupin Gupta runs Digital Guru books. He's one of the nicest people you'll ever meet, a real joy to work with, and he works hard to put books on shelves so that you can discover them. They don't just sell books though, they know the authors, the customers, they're the epitome of a small customer focused business."

Small Business 130

Small Business 130

Adam Shostack

JANUARY 2, 2025

Some of what I've read over the past quarter, and want to recommend each of the books below as worthy of your time. Dr. Black is explicit that she wrote the book to carry the feel of an internet campaign, with some stylistic bits that I found surprising. Don't make my mistake, and do read the book. I was expecting a drier style.

Internet 130

Internet Internet IoT Education 130

Schneier on Security

FEBRUARY 2, 2024

His groundbreaking book, The Codebreakers was the first serious book I read about codebreaking, and one of the primary reasons I entered this field. David Kahn has died. He will be missed.

334

334

Adam Shostack

JANUARY 2, 2025

The books I read in the third quarter of 2022 that are worth your time. The books I read in the third quarter of 2022 that are worth your time. Research for my next book. I don't like strategy books much, and this one explains why: they're not actually strategy, but rather just pablum like we're going to work smarter.

130

130

Adam Shostack

JANUARY 2, 2025

These are the books that I read in the second quarter, 2022 that are worth your time. Books I've read lately that I think you might find enjoyable are the focus of this 100% foreshadowing-free edition of worthwhile books. Write Useful Books , Rob Fitzpatrick. Cyber Cyber Peace , edited by Scott J.

Surveillance 130

Surveillance 130

Adam Shostack

JANUARY 2, 2025

Books that I read in the second quater that are worth your time include two memoirs, a great book on the security of ML, and more! A short book reflecting on the history of thinking about passwords, treating the secret knowledge of how to solve the labyrinth as password adjacent. Password (Object Lessons series) , Martin Eve.

Passwords 130

Passwords Hacking Cybersecurity 130

Adam Shostack

JANUARY 2, 2025

The serious side of the book Im really excited to have my first copies of the new book in hand. Ive said a lot about how much fun Ive had writing it, and perhaps havent written enough about what a serious book it really is. So all that to say: this is a serious book in a fun package, and I hope you enjoy it and learn from it.

Cybersecurity 130

Cybersecurity 130

Adam Shostack

JANUARY 2, 2025

I'm always looking for interesting books to read. These are the books that I enjoyed enough to recommend in Q2. I'm always looking for interesting books to read. These are the books that I enjoyed enough to recommend in Q2. Also, thanks to RAND for releasing their books with an epub version.)

Manufacturing 130

Manufacturing Engineering 130

Adam Shostack

JANUARY 2, 2025

Im excited to share that Ill be doing a book reading and signing at Adas Books, Feb 7th at 6PM. The live launch party for Threats! Tomorrow!) official site , and they ask you RSVP on Facebook. Ill also be doing a virtual launch party, 3PM Feb 8th for those not in Seattle, or otherwise unable to attend.

130

130

Adam Shostack

JANUARY 2, 2025

Books that I read in the fourth quater that are worth your time include several about safety with lessons for cybersecurity Cyber Both of my so-called cyber books are not about cyber — if you judge a book by its cover. The excellent book by Ms. But both have some pretty important lessons for us.

Cybersecurity 130

Cybersecurity Engineering Risk 130

Joseph Steinberg

JULY 21, 2022

The second edition of Cybersecurity For Dummies , Joseph Steinberg’s best-selling introductory-level book about cybersecurity, is now available. The book is the down-to-earth guide you need to secure your own data (and your company’s, too). Topics covered in the book include: ? The who and why of cybersecurity threats. ?

Cybersecurity 363

Cybersecurity Artificial Intelligence Backups Encryption 363

Adam Shostack

JANUARY 2, 2025

Threats is almost in bookstores When my first threat modeling book came out, I talked about STRIDE in terms of Star Wars Luke Skywalker spoofing a Stormtrooper and being caught because he was too short. And as I thought about turning that into a book, my publisher suggested maybe you can get a chapter out of it? I mean, kids today .

Engineering 130

Engineering Accountability 130

Adam Shostack

JANUARY 2, 2025

These are the books that I read in the second half of 2021 that I think are worth your time. I realize it's been a little while since I did this, but I wanted to pick up my now and then mention of books that I read in Q4 2021 that I think are worth your time. Cyber A Vulnerable System by Andrew Stewart.

Engineering 130

Engineering Software Cybersecurity 130

Lohrman on Security

AUGUST 11, 2024

Carter Schoenberg is a trusted security expert who has vast experience in the public and private sectors. Here’s his guidance on what works and what doesn’t with the cybersecurity industry.

Cybersecurity 226

Cybersecurity 226

Schneier on Security

OCTOBER 20, 2021

They used gift cards and prepaid credit cards to buy the books, so there was no available balance when Amazon tried to charge them the buyout price for non-returned books. They also used various aliases and other tricks to bypass Amazon’s fifteen-book limit. In all, they stole 14,000 textbooks worth over $1.5

Scams 346

Scams 346

Joseph Steinberg

JANUARY 26, 2024

The Polish version of the second edition of Cybersecurity For Dummies , Joseph Steinberg’s best-selling introductory-level book about cybersecurity, is now available. The book provides readers of the Polish language with a down-to-earth guide to help them to secure their data (and the data belonging to their employers).

Cybersecurity 161

Cybersecurity Artificial Intelligence Backups Encryption 161

Security Boulevard

DECEMBER 8, 2024

Discover the latest on her new book about secure coding, exciting updates in Application Security, and the use of AI in security. Learn how her new book goes deeper into secure coding practices, backed by her [] The post Tanya Janca on Secure Coding, AI in Cybersecurity, and Her New Book appeared first on Shared Security Podcast.

Cybersecurity 64

Cybersecurity Data privacy Cyber threats InfoSec 64

Adam Shostack

JANUARY 2, 2025

An unexpected book review. I hate reviewing books by people I know, because I am a picky reader, and if you can't say anything nice, don't say anything at all. I also tend to hate management books, because they often substitute jargon for crisp thinking. It is not a book for the CSO. Fire" doesn't do that.

CSO 130

CSO Cyber Risk Backups Risk 130

We Live Security

OCTOBER 10, 2024

ESET Research shares new findings about Telekopye, a scam toolkit used to defraud people on online marketplaces, and newly on accommodation booking platforms

Scams 142

Scams 142

Troy Hunt

OCTOBER 20, 2021

The full tale of what I first did (and how disastrous it ultimately became), is up front early in the book so I won't relay it here, but it's quite the story. The book title - Pwned - also seemed like a natural fit. "Somehow" is a theme throughout the book because if I'm honest, none of this was really planned.

Data breaches 343

Data breaches Internet Internet 343

Troy Hunt

DECEMBER 7, 2024

The Armenian Government is now the 37th to have free and open access to their domains on HIBP (this gives them API-level domain searches to their gov TLD) After two and a bit years on sale, we're now giving away "Pwned" the book, for free (go grab it in PDF or EPUB format)

InfoSec 232

InfoSec Government Accountability 232

Adam Shostack

JANUARY 2, 2025

It's bad news for people who want to be able to control their computer, because these attacks are leading vendors to lock down even their traditional operating systems, as Jonathan Zittrain predicted in his 2008 book, The Future of the Internet--And How to Stop It. Cult of the Dead Cow , Joseph Menn. The White Box Essays , Jeremy Holcomb.

Technology 130

Technology Hacking Internet Internet 130

Adam Shostack

JANUARY 2, 2025

but the books were already printed with 1/4" grid (didn't think it through). And I missed whiteboards, so working with my partners at Agile Stationery, we created not only whiteboards, but also stencils to help you neaten up your threat models as you iterate through them. So the final production stencils have an inch-denominated ruler.

Engineering 130

Engineering 130

Adam Shostack

JANUARY 2, 2025

The White Box , and its accompanying book, "The White Box Essays" are a FANTASTIC resource, and I wish I'd had them available to me as I designed Elevation of Privilege and helped with Control-Alt-Hack. If you've ever thought about designing a game, you should buy this book. A resource for those developing games.

Marketing 130

Marketing Hacking 130

Joseph Steinberg

JANUARY 22, 2024

Hacking et Cybersécurité Mégapoche pour les Nuls , a single-volume book containing French versions of the latest editions of both the best selling CyberSecurity for Dummies by Joseph Steinberg, and Hacking For Dummies by Kevin Beaver, is now available to the public.

Hacking 161

Hacking Cybersecurity Penetration Testing Artificial Intelligence 161

Adam Shostack

JANUARY 2, 2025

These are the books that I read in Q2 2020 that I think are worth your time. These are the books that I read in Q2 2020 that I think are worth your time. Let me be frank: I hate most business books. Sorry it's late. They're still worthwhile. :) Cyber You'll See This Message When It Is Too Late , by Josephine Wolff.

Internet 130

Internet Internet Software Government 130

Krebs on Security

NOVEMBER 1, 2024

KrebsOnSecurity last week heard from a reader whose close friend received a targeted phishing message within the Booking mobile app just minutes after making a reservation at a California. The phishing message our reader’s friend received after making a reservation at booking.com in late October.

Phishing 255

Phishing Accountability Artificial Intelligence Cybercrime 255

Zero Day

FEBRUARY 18, 2025

Will this change how you buy and store digital books? The clock is ticking for Kindle users. After February 2025, a long-standing feature disappears. Read on to find out.

145

145

Schneier on Security

APRIL 2, 2024

And a 1994 review of Applied Cryptography by redacted : Applied Cryptography, for those who don’t read the internet news, is a book written by Bruce Schneier last year. The book is destined for commercial success because it is the only volume in which everything linked to cryptography is mentioned. There are many redactions.

Internet 334

Internet Internet 334

Schneier on Security

JULY 30, 2021

It’s about 150 linear feet of books, conference proceedings, journals, and monographs — mostly from the 1980s, 1990s, and 2000s. The time has come for me to find a new home for my (paper) cryptography library.

Education 363

Education 363

Adam Shostack

JANUARY 2, 2025

Thought-provoking survey of the problems that come from the book above not being better read. Fiction As it turns out, all three fiction books are re-imaginings of other stories. Good enough that I bought a paper copy to augment the ebook. Also, sometimes redundant, and says nice things about my work.)

Marketing 130

Marketing Internet Internet Software 130

Adam Shostack

JANUARY 2, 2025

Some books worth reading. Angel: How to Invest In Technology Startups is a bit of a breathless business book, but is an excellent overview of how to be a helpful angel investor. One ran the State department, the other the CIA. Sometimes verges towards the polemical, and readers with a statistical bent may want more.

Engineering 130

Engineering Technology 130

Adam Shostack

JANUARY 2, 2025

Some books worth reading, particularly related to space and history A Man on the Moon , Andrew Chaikin is probably the best of the general histories of the moon landings. Failure is not an Option , by Gene Kranz, who didn't actually say that during Apollo 13. Marketing The Moon by David Scott and Richard Jurek.

Marketing 130

Marketing 130

Schneier on Security

MARCH 31, 2024

Which means that sometime in early 1993 I, as an unpublished book author who only wrote a couple of crypto articles for Dr. Dobbs Journal , asked him to read and comment on my book manuscript. He’s listed in the acknowledgments as a reader of every other of my books from Beyond Fear on. And he said yes. And he read it.

Surveillance 345

Surveillance Engineering Encryption Government 345

Krebs on Security

JUNE 25, 2021

. “Western Digital has determined that some My Book Live and My Book Live Duo devices are being compromised through exploitation of a remote command execution vulnerability,” the company said in a statement June 24. The My Book Live and My Book Live Duo devices received its final firmware update in 2015. .”

Internet 330

Internet Internet Backups Small Business 330

Schneier on Security

SEPTEMBER 13, 2021

Also see her excellent book on the topic. Susan Landau wrote an essay on the privacy, efficacy, and equity of contract-tracing smartphone apps.

325

325