Over the past decade, there’s something I’ve hinted at, mentioned in passing as a part of broader discussions, and told more people than I can count privately via email and other one-on-one conversations. And now, as the writer of the internet’s longest-standing Android column and newsletter — a fancy way of saying someone who is…
Tag: I’ve
AI, china, Compliance, Global Security News, Network Security, Risk Management
Stop treating AI governance as a review layer. Make it release infrastructure
I’ve spent years building compliance into security products. FedRAMP and Department of War Impact Level authorizations, vulnerability management pipelines: They all follow the same pattern. Build the product, then prove it meets requirements. The compliance layer sits outside the engineering workflow. It reviews what already exists. That model worked when the product stayed static between…
AI, Global Security News, malware
Possible ACR Stealer From Page Impersonating Claude, (Tue, May 26th)
Introduction In recent weeks, I’ve searched for pages impersonating Claude that distribute malware. In recent weeks, I’ve reliably found these sites through malicious ads in Google searches that lead to these pages, often concealed in URLs for sites.google[.]com, such as this example from 2026-05-11. These fake Claude pages generally show instructions for macOS malware when…
AI, Compliance, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
Why patching SLAs should be the floor, not the strategy
I’ve been a CISO for two separate companies, know several CISOs personally, and interact with many others through various cybersecurity forums. We all have one thing in common. We can tell you our patching SLA numbers off the top of our heads. Ninety-five percent of criticals closed in 14 days. Eighty-something on highs. The board…
AI, Global Security News
How to create your own custom Android air gesture
Psst: Come close. I’ve got something to share with you, and I don’t want everyone around here to hear it. Oh — hi! Sorry, I didn’t realize you were here. I was actually talking out loud to my phone just now, as one does, thanks to a nifty new air gesture I set up that…
AI, Global Security News
Weekly Update 499
I’m starting to become pretty fond of Bruce. Actually, I’ve had a bit of an epiphany: an AI assistant like Bruce isn’t just about auto-responding to tickets in an entirely autonomous manner; it’s also pretty awesome at responding with just a little bit of human assistance. Charlotte and I both replied to some tickets today…
AI, Global Security News, privacy, Venture
Chrome, Vivaldi, and the challenge of changing browsers
Ahem: My fellow Android-appreciating organisms — I’ve got a confession. After the better part of two decades of personally using Google’s Chrome browser on both Android and every desktop computer I own, I’ve made the leap into the arms of a shiny new web-weaving seductress. Her name is Vivaldi. Yes, it feels like a mildly…
AI, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Politics, Risk Management
The external pressures redefining cybersecurity risk
Over the last four years, I’ve watched organizations get blindsided by threats that originated in a third-party network. More than 35% of data breaches are caused by a compromised vendor or partner, not by any failure in the organization’s controls. While many organizations know that the biggest threats to their security come from forces entirely…
AI, Apps, Compliance, Endpoint, Exploits, Global Security News, malware, Network Security
Why Kubernetes controllers are the perfect backdoor
In my years securing cloud-native environments, I’ve noticed a recurring blind spot. We obsess over the “front doors” such as exposed dashboards, misconfigured RBAC, or unpatched container vulnerabilities. We harden the perimeter, but we often ignore the machinery humming inside. Sophisticated adversaries have moved beyond simple smash-and-grab tactics. They don’t just want to run a…
AI, APAC, Cybersecurity, Global Security News, Network Security, Risk Management, Venture
“It is not the customer’s job to know what they want” rings true in cyber
Ever since I embarked on the founder journey and started working on my own startup, I’ve developed different perspectives and some strong opinions about founder life. In today’s issue, I am going to share one of them – about the fact that there has never been a billion-dollar security company built based on Gartner’s* insight…
AI, Global Security News
Tool updates: lots of security and logic fixes, (Mon, Mar 23rd)
So, I’ve been slow to get on the Claude Code/OpenCode/Codex/OpenClaw bandwagon, but I had some time last week so I asked Claude to review (/security-review) some of my python scripts. He found more than I’d like to admit, so I checked in a bunch of updates. In reviewing his suggestions, he was right, I made…
AI, Cloud Security, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management, Venture
There’s only one kind of tool security teams should be building with AI
I am not sure what I’ve been doing on social media over the past year (particularly on LinkedIn), but these days my feed is filled with posts of security people who build some very cool tools. There’s so much excitement that with LLMs, anyone can now be a product developer, which means that security teams…
AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Why access decisions are becoming the weakest link in identity security
In my nearly two decades leading identity and risk programs, I’ve learned a sobering truth that every CISO eventually confronts: hackers don’t hack in — they log in. We often obsess over the perimeter and the sophistication of technical exploits, but many of the most damaging security failures I’ve witnessed didn’t involve a zero-day or…
AI, Data Breaches, Global Security News
Weekly Update 494
Since starting HIBP a dozen and a bit years ago, I’ve loaded an average of one breach every 4.7 days. That’s 959 of them to date, but last week it was five in only two days. That’s a few weeks’ worth of breaches in only 48 and a half hours. And that’s the way it…
AI, Global Security News, malware
Japanese-Language Phishing Emails, (Sat, Feb 21st)
Introduction For at least the past year or so, I’ve been receiving Japanese-language phishing emails to my blog email addresses at @malware-traffic-analysis.net. I’m not Japanese, but I suppose my blog’s email addresses ended up on a list used by the group sending these emails. They’re all easily caught by my spam filters, so they’re not…
Global Security News
Pipeline – watch YouTube and PeerTube videos
I’ve covered quite a few GUI tools that let you access YouTube content without using a web browser. Pipeline goes one step further by letting you also view PeerTube content. Pipeline is free and open source software. The post Pipeline – watch YouTube and PeerTube videos appeared first on Linux Today.
AI, Global Security News
Fake Incident Report Used in Phishing Campaign, (Tue, Feb 17th)
This morning, I received an interesting phishing email. I’ve a “love & hate” relation with such emails because I always have the impression to lose time when reviewing them but sometimes it’s a win because you spot interesting “TTPs” (“tools, techniques & procedures”). Maybe one day, I’ll try to automate this process! Today’s email targets Metamask[1]…
AI, Apps, Compliance, Cybersecurity, Exploits, Global Security News, Penetration Testing, Risk Management, Security, Security Practices, Risk Management
The hard part of purple teaming starts after detection
In my recent articles for CSO, I’ve talked about the limits of current SOC models and the importance of rehearsal. This time, I want to focus on something that’s becoming increasingly clear: purple teaming has lost its depth. We’ve turned one of the most powerful tools for resilience into a transactional exercise that feels reassuring…