Skip to content

Derek Krein

Members Public

Cyber Threat Weekly – #74

The week of April 14th through April 20th, around 374 cyber news articles were reviewed.  A light amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about security control validation.  How do you know your security controls are working as expected?  It feels like we do

Members Public

Cyber Threat Weekly – #73

The week of April 7th through April 13th, around 397 cyber news articles were reviewed.  A light amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about security tools and shelfware. It feels like there is a disconnect between buying security tools and deploying them appropriately.

Members Public

Cyber Threat Weekly – #72

The week of March 31st through April 6th, around 384 cyber news articles were reviewed.  A moderate-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about the ransomware economy.  From initial access brokers to malware-as-a-service, cybercriminals have an arsenal of tools at their disposal.  While

Members Public

Cyber Threat Weekly – #71

The week of March 24th through March 30th, around 395 cyber news articles were reviewed.  A light-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about the need for principle-based security. We moved away from the principle of least privilege long ago.  With today’s

Members Public

Cyber Threat Weekly – #70

The week of March 17th through March 23rd, around 389 cyber news articles were reviewed.  A light-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin, cybersecurity risk is business risk. A business impact analysis provides the ‘why’ of your cybersecurity program and the ‘what’ to

Members Public

Cyber Threat Weekly – #69

The week of March 10th through March 16th, around 364 cyber news articles were reviewed.  Minimal cyber threat trends and adversarial behavior news stories are shared this week, storms knocked the power out from Friday night until Monday mid-morning. Let’s start with newly tracked ransomware actors exploiting patched Fortinet

Members Public

Cyber Threat Weekly – #68

The week of March 3rd through March 9th, around 390 cyber news articles were reviewed.  A moderate-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about the complexity of attack surface management.  We don’t have to like it, but it’s often little things

Members Public

Cyber Threat Weekly – #67

The week of February 24th through March 2nd, around 348 cyber news articles were reviewed.  A light amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about our approach to securing our environments. It feels like we keep doing the same things over and over again

Members Public

Cyber Threat Weekly – #66

The week of February 17th through February 23rd, about 334 cyber news articles were reviewed.  A light-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about data loss prevention and data protection complexity. Data Loss Prevention (DLP) has not really lived up to its promise.

Members Public

Cyber Threat Weekly – #65

The week of February 10th through February 16th, around 380 cyber news articles were reviewed.  A light-ish amount of cyber threat trends and adversarial behavior news to share.  Been thinkin about proactive defense with deception technology. Low / no buck deception pays huge dividends.  As an industry, we struggle to detect