The Great Wall of China was built to slow northern raiders and prevent steppe armies from riding straight into the empire’s heart. Yet in 1644, its most impregnable fortress fell without a siege. At Shanhai Pass, where the wall meets the Bohai Sea, General Wu Sangui commanded the eastern gate. Behind him: a rebel army…
Category: op-ed
AI, Artificial Intelligence (AI), china, Cloud Security, Commentary, Data Breaches, Exploits, Global Security News, malware, Network Security, op-ed, privacy, Risk Management
AI security’s ‘Great Wall’ problem
The Great Wall of China was built to slow northern raiders and prevent steppe armies from riding straight into the empire’s heart. Yet in 1644, its most impregnable fortress fell without a siege. At Shanhai Pass, where the wall meets the Bohai Sea, General Wu Sangui commanded the eastern gate. Behind him: a rebel army…
Commentary, Global Security News, Microsoft, op-ed
If you don’t control your keys, you don’t control your data
A recent Forbes investigation revealed that Microsoft has allegedly been handing over Bitlocker encryption recovery keys to law enforcement when served with warrants. Microsoft says it receives about 20 such requests annually. Taken narrowly, this may appear to be a routine case of lawful compliance. On closer inspection, it raises a consequential question about how…
AI, Artificial Intelligence (AI), Commentary, Compliance, Global Security News, op-ed
AI doesn’t care if it’s in California or Texas. It just runs.
Artificial intelligence is evolving faster than regulators can keep up. In the absence of federal guidance, states have taken matters into their own hands. California’s S.B. 53 is only one example of a state attempting to shape how AI is built and used. Although these laws are well-intentioned and help protect consumers and promote transparency…
Commentary, critical infrastructure, Exploits, Global Security News, op-ed, operational technology, Technology
‘Stranger Things’ emerge when OT security is stuck in the past
The final season of “Stranger Things” is upon us, and 1980s nostalgia is at an all-time high. The clunky control panels at Hawkins Lab help set the stage for the show. The unfortunate reality is that similar legacy systems still exist in operational technology (OT) environments today. Just as Hawkins Lab spawned a monstrous compendium…
api, Commentary, Cybersecurity, Exploits, Global Security News, OAuth, op-ed
When trust turns toxic: Lessons from the Salesloft Drift incident
The recent Salesloft Drift breach offered a sobering reminder of how easily trust can be weaponized in today’s SaaS and AI-integrated environments. In this incident, hackers exploited the Drift chatbot, stole OAuth tokens, and used them to obtain data from CRM systems before the tokens could be revoked. In the wake of the incident, many…
Commentary, Compliance, Cybersecurity, Exploits, Global Security News, op-ed, Policy
The quiet revolution: How regulation is forcing cybersecurity accountability
Cybersecurity headlines still focus on the headline-grabbing moments, whether it’s the latest breach, a zero-day exploit, or an eye-catching product launch. However, beneath the surface noise, a quieter but more profound transformation is taking place—driven by regulations that are changing the way organizations think about, approach, and communicate on security.” Across the globe, new standards…
Commentary, Cybersecurity, Global Security News, op-ed, Secure Hosting Alliance, web hosting
Why the web-hosting industry needs a trust seal
Every day, billions of people place their trust in websites they know little about. Behind each one is a hosting provider, but not all of them play by the same rules. Traditionally, privacy policies let web visitors understand how their data would be handled, and SSL (Secure Sockets Layer) certificates ensured their connection was encrypted.…
Commentary, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Emerging Tech, Global Security News, Government, op-ed, Salt Typhoon, Volt Typhoon
Don’t let DOGE destroy CISA
Cybersecurity is the frontline of our national security. President Donald Trump and his adviser, Elon Musk, are doing more damage to our cyber defenses than Moscow or Beijing have done in decades. They are taking our defense off the field and hoping our enemies don’t take a shot at the end zone. They are wrong,…
Commentary, Cybersecurity, encryption, Global Security News, op-ed, post-quantum encryption, quantum computing
Preparing for the post-quantum era: a CIO’s guide to securing the future of encryption
Quantum computing is on the verge of revolutionizing the technology landscape, much like AI did in 2024. By the end of 2025, quantum computing will emerge as a defining force, ushering in a new era filled with both unprecedented opportunities and significant challenges in securing digital assets. While state-of-the-art quantum computers aren’t yet capable of…
Commentary, encryption, Exploits, Global Security News, op-ed, signal
After Signal controversy, do private conversations online exist anymore?
Every day, we place our trust in technology. Whether in the boardroom or the living room, technology has become the linchpin of security that protects our most sensitive and private information. And more so than any time in our history, that goes for our conversations, too. Intimate discussions with our spouse or romantic partner. Collaboration…
Asia Pacific, Commentary, Cybersecurity and Infrastructure Security Agency (CISA), Donald Trump, Executive order, FEMA, Global Security News, Government, information sharing and analysis centers (ISACs), maritime cybersecurity, op-ed
Rebuilding Maritime Cybersecurity Resilience: Charting an America First Course to Secure the U.S. Homeland
U.S. ports are vital to the flow of imports and exports; however, the entire maritime transportation system’s cybersecurity is exceedingly vulnerable. The August 2024 ransomware attack at the Port of Seattle resulted in significant cargo delays and a data breach of 90,000 individuals. Such a wide-scale incursion could have resulted in a longer loss of…
AI, Anthropic, essay, export controls, export rules, Global IT News, Global Security News, Government, Government & Policy, op-ed, Policy
Anthropic’s CEO says DeepSeek shows that U.S. export rules are working as intended
In an essay on Wednesday, Dario Amodei, the CEO of Anthropic, weighed in on the debate over whether Chinese AI company DeepSeek’s success implies that U.S. export controls on AI chips aren’t working. Amodei, who recently made the case for stronger export controls in an op-ed co-written with former U.S. deputy national security advisor Matt…