Daniel Miessler

SEPTEMBER 29, 2020

Since 2007 the InfoSec industry has been talking about TheBigOne™—the event that would change cyber threats from annoyances to existential concerns. They called it Cyber Pearl Harbor. This doesn’t mean it can’t still happen. If you get value from this content, you can support it directly by becoming a member.

Ransomware 246

Ransomware Government Social Engineering Small Business 246

Daniel Miessler

APRIL 16, 2020

In the case of corporate infosec that’s the business, and in the consumer world it’s the business of human thriving. —. Being a member gets you access to the newsletter every week instead of just twice a month, access to the UL Slack Channel, the UL Book Club, the UL Archives, and access to future member-only content.

Internet 190

Internet Internet Risk InfoSec 190

The Last Watchdog

JANUARY 22, 2024

Mukkavilli “ChargePoint is committed to the security of all customer data, and through this collaboration, we’ve implemented critical enhancements to Home Flex,” said Teza Mukkavilli, Chief Information Security Officer of ChargePoint. For more information, please email the InfoSec team at: infosec@chargepoint.com.

IoT 100

IoT InfoSec Firmware Manufacturing 100

SecureWorld News

JUNE 24, 2024

The TRIAD Model During my career as a CISO, I relied on my TRIAD Model to envision, enact, and mobilize Information Security & Privacy strategic planning and roadmap execution activities with foundational pillars as illustrated below. Business continuity plans can help mitigate disruptive incidents.

IoT 106

IoT InfoSec Artificial Intelligence Risk 106

Malwarebytes

MARCH 16, 2021

The theme is often breaking into infosec. I get to dust off some oldies and give a snapshot of security research circa [insert year of choice here]. It’s usually quite difficult for them to get people booked in to speak about things. Every year, I take part in talks for universities and schools. It’s a win-win for everybody.

Cybersecurity 110

Cybersecurity InfoSec Education Technology 110

Kali Linux

JANUARY 16, 2017

If you’re new to the information security field, or are looking to take your first steps towards a new career in InfoSec, the KLCP is a “must have” foundational certification. New Book - Kali Linux Revealed Mastering the Penetration Testing Distribution More exciting news!

Penetration Testing 52

Penetration Testing InfoSec Information Security Encryption 52

eSecurity Planet

AUGUST 9, 2022

States also differ on other data privacy and IT security compliance laws. The states of Nevada, Minnesota and Washington stand out for having their own laws on the books creating liability in certain situations for businesses that handle credit card transactions and are not in compliance with PCI-DSS.

Data privacy 145

Data privacy Encryption Data breaches Insurance 145

Daniel Miessler

MAY 19, 2020

Verizon’s Breach Report is one of the best infosec reports out there, and I’m always excited when I hear it’s been released. He looks at the key findings and talks about what they might mean to us going forward. The newsletter serves as the show notes for the podcast. The Dataviz Game on Point.

Data breaches 130

Data breaches Phishing Malware Hacking 130

ForAllSecure

MARCH 8, 2023

Booth babes and rampant sexism were more of a problem in infosec in the past. I wrote two books, one on IoT Security and another with Kevin Mitnick, then jumped around a couple of different jobs. What if you are a woman in information security? That is, until Chenxi Wang spoke up. So I learned. And the good news?

InfoSec 40

InfoSec Engineering CSO Technology 40

Security Boulevard

SEPTEMBER 1, 2021

The post DEF CON 29 Main Stage – Slava Makkaveev’s ‘I Know How To Take Over Your Kindle With An E-Book’ appeared first on Security Boulevard. Our thanks to DEFCON for publishing their outstanding DEFCON Conference Main Stage Videos on the groups' YouTube channel.

Education 40

Education InfoSec Information Security Cybersecurity 40

The Security Ledger

JUNE 5, 2019

In this week's episode of the podcast: Joseph Menn's new book Cult of the Dead Cow: How the Original Hacking Supergroup Might Just Save the World hit store shelves this week. Also: is the talent pipeline for information security empty, or has it sprung a leak? Solving Infosec’s Pipeline Problem. We're joined.

Digital transformation 40

Digital transformation Hacking Information Security InfoSec 40

Troy Hunt

JANUARY 3, 2019

It's been resoundingly well-received by both browsers to the site and the sponsors themselves and I've already booked 2019 out until August. Who knows, maybe this is something I'll even write more about in 2019 if there's an appetite. The sponsorship model continued strongly too. Speaking Geez, where to start.

Passwords 212

Passwords Technology Government InfoSec 212

Security Boulevard

JULY 25, 2022

In this episode learn all about the world of corporate spying from someone who was a corporate spy and actually wrote a book on it! The post Robert Kerbeck Author of RUSE: Lying the American Dream from Hollywood to Wall Street appeared first on The Shared Security Show.

Social Engineering 80

Social Engineering Data privacy Engineering InfoSec 80

SecureWorld News

FEBRUARY 26, 2024

Information Security is no different. We celebrate their contributions to InfoSec, elevating everyone in the cybersecurity profession—today's heroes. A pioneer in cryptography, computer security, and information warfare, she was a relentless guardian of the cyber realm.

Technology 94

Technology Cybersecurity Engineering InfoSec 94

SC Magazine

MARCH 18, 2021

military and serving as deputy chief information security officer at Globe Life and global information security risk director at GM Financial. As an infosec leader, Vaughn witnessed first-hand the dearth of available IT talent that’s available to hire. and Canada.

Education 81

Education Media InfoSec Engineering 81

Notice Bored

APRIL 20, 2022

I am currently drafting a guideline on information security, privacy, governance, compliance and other controls to mitigate unacceptable information risks in professional services. Guess whose interests they are most likely to protect!

Risk 72

Risk Energy and Utilities Computers and Electronics Telecommunications 72

Daniel Miessler

DECEMBER 24, 2019

Twitter infosec is the top 10%, at best, arguing with each other. I had a crazy idea this morning that I don't actually believe, but thought would be a great book idea. And therefore knowing how your stimuli will affect outcomes. What do you think the stat is for those without CIOs? Probably also zero. Don’t want to patch?

Penetration Testing 100

Penetration Testing InfoSec Government Ransomware 100

Notice Bored

SEPTEMBER 2, 2020

An I nformation S ecurity M anagement S ystem facilitates the management of information risks, information security controls, governance and assurance arrangements and so forth, 'systematically' i.e. in a structured and coherent way. This is a great opportunity to take the first step on your mission!

Risk 52

Risk Government Information Security Ransomware 52

Security Boulevard

JUNE 11, 2023

From his origins as a professional wrestler who once bravely faced off […] The post How to Break Into a Cybersecurity Career – Phillip Wylie appeared first on Shared Security Podcast. Join us as we discuss Phillip’s unique journey and uncover valuable insights on breaking into the cybersecurity field.

Cybersecurity 105

Cybersecurity Penetration Testing Data privacy InfoSec 105

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. There's a serious shortage of InfoSec professionals.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. There's a serious shortage of InfoSec professionals.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

ForAllSecure

JULY 14, 2021

As we head to Hacker Summer Camp, how should we rebuild our infosec communities to be more inclusive and diverse? I'm attending in person this year, as are a lot of people in the InfoSec world. Rather, I choose to see this as a fresh start to create a new community within InfoSec. Jack Daniel offers his unique voice.

Hacking 52

Hacking InfoSec Media Technology 52

Security Boulevard

APRIL 5, 2022

Suffice to say that wasn’t the case : ) I cover some books/courses/other references that have helped me on the journey at the end of this post for anyone interested. Machine Learning Books. “ The 100 Page Machine Learning Book ” is a great, fairly short overview (with some math) of most ML concepts. Machine Learning Books. “

Architecture 69

Architecture InfoSec Risk Technology 69

ForAllSecure

JULY 28, 2021

His book, Hacking Google was a best seller, but after, he just wasn't feeling it. Vamosi: Burnout is a major concern in the InfoSec world. Vamosi: Unlike what you might see on TV or in the movies, or in a book, hackers, are indistinguishable from anyone else. Jack has been chronicling other people in InfoSec.

Hacking 52

Hacking Computers and Electronics InfoSec Technology 52

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Security technologist Bruce Schneier was respected long before the launch of Twitter. The book will focus on cutting edge web red team, pentester, and bug bounty topics.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

CyberSecurity Insiders

JULY 7, 2021

The Certified Information Systems Security Professional (CISSP) certification is considered to be the gold standard in information security. Those doors lead to many different types of positions and opportunities, thus making the information security community dynamic and multifaceted. I did two things.

Financial Services 40

Financial Services Cybersecurity Technology Government 40

ForAllSecure

MAY 2, 2023

I’m Robert Vamosi and in this episode I’m talking about online criminal investigations conducted by someone who is inside the infosec community, and how your social media posts -- no matter how good you think you are about hiding -- can reveal a lot about your true identity. Daniel, he keeps a low profile. CLEMENS: I do.

Hacking 40

Hacking Media InfoSec Internet 40

ForAllSecure

FEBRUARY 8, 2023

And that's just because it's not in the books VAMOSI: True. A lot of infosec’s knowledge is either tribal -- passed on from one person to another - or can be found in books. Checkout the Cqure Academy to learn more about information security. We’re here to help each other learn about security.

Software 40

Software Phishing Passwords Malware 40

Security Boulevard

SEPTEMBER 30, 2022

In the book, McGilchrist explores the two hemispheres of the brain and how they “experience” the world differently. This hierarchy allows us to talk about attacks at numerous levels of resolution or abstraction, but what does that ability provide for us?

Engineering 40

Engineering InfoSec Information Security Threat Reports 40

Daniel Miessler

OCTOBER 4, 2020

We could also have a massive network of technical support, using people in infosec who already have jobs. Being a member gets you access to the newsletter every week instead of just twice a month, access to the UL Slack Channel, the UL Book Club, the UL Archives, and access to future member-only content.

Ransomware 246

Ransomware Small Business Government InfoSec 246

ForAllSecure

FEBRUARY 22, 2023

Last year at Hacker Summer Camp I was invited to Mikko Hypponen’s book launch for If it’s Smart, It’s vulnerable. But now you know, the rise of cybercrime like that's actually problematic and it's a bad idea to make that your start into information security. VAMOSI: I am not a gamer. It's pretty fantastic.

Engineering 40

Engineering Hacking Marketing Wireless 40

ForAllSecure

JULY 6, 2022

There’s an online war in Ukraine, one that you haven’t heard much about because that country is holding its own with an army of infosec volunteers worldwide. Vamosi: The slogan of the RSA Conference is “Where the World Talks Security,” and, in general. RSAC also attracts some of the top researchers in infosec.

Cybercrime 40

Cybercrime Government Ransomware Hacking 40

ForAllSecure

JANUARY 22, 2023

Having a common framework around vulnerabilities, around threats , helps us understand the infosec landscape better. Adam Shostack has a new book, Threats: What Every Engineer Should Learn From Star Wars. Adam has more than 20 years in the infosec world, and he even helped create the CVE system that we all use today.

Engineering 40

Engineering Technology Information Security Authentication 40

ForAllSecure

APRIL 12, 2022

Should infosec now be considered vocational training just like becoming an electrician or a plumber? How else should we address the skills gap in infosec? My boss at the time didn't know much about infosec. She died a few years ago, but I believe the book continues with other authors. I was a paid writer--whoo, whoo.

Cybersecurity 52

Cybersecurity InfoSec Technology Marketing 52

ForAllSecure

AUGUST 2, 2022

Vamosi: DEF CON turns 30 This year what began simply as a going away party for a coworker has since evolved over the decades into an annual summer tradition for InfoSec leaders in Las Vegas, which now includes other events such as besides Las Vegas, Diana is known as hackers summer camp. Again, all all around the InfoSec community.

Hacking 40

Hacking Computers and Electronics InfoSec Software 40

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences. It gets lost.

Hacking 52

Hacking Energy and Utilities Manufacturing Firmware 52

Security Affairs

FEBRUARY 14, 2022

In 2004, Nokia and Ericsson admitted that some of their Bluetooth-enabled devices were vulnerable to unauthorized access to information from a wireless device through a Bluetooth connection, called “bluesnarfing”. This means a threat actor could read, modify and copy users’ address books and calendars without leaving any trace.

Wireless 98

Wireless Manufacturing Firewall Technology 98