Let me start by saying that I'm a scientist. Therefore, making predictions about what will happen in 2019 is difficult to present in a scientific manner. Predictions, of course, come with a substantial level of uncertainty. Let me also say that these predictions reflect what I...
On December 10, 2018, the U.S. House Oversight and Government Reform Committee released its report on the massive Equifax data breach that was disclosed in September 2017. According to the report: Equifax failed to fully appreciate and mitigate its cybersecurity risks. Had the company taken action...
How participating in hacking competitions can improve the security culture of a company and the talent of the security team Security Talent is Hard to Find and Even Harder to Keep One of the most-heard complaints from security experts is that often they find their work repetitive...
Digital criminals are innovating all the time, making them an even more formidable enemy. They’ve begun embracing automated intelligence to learn how a target system’s defenses work and to blend in with normal network activity. They borrow code from successful threats like Mirai to develop...
Everywhere I look, someone’s talking about machine learning (ML) or artificial intelligence (AI). These two technologies are shaping important conversations in multiple sectors, especially marketing and sales, and are at risk of becoming overused and misunderstood buzzwords. The technologies are also drawing the attention of...
In January 2017, the U.S. Department of Homeland Security (DHS) classified electoral systems as “critical infrastructure.” Then-DHS head Jeh Johnson promised the designation wouldn’t mean “a federal takeover, regulation, oversight or intrusion concerning elections in this country.” He said it would instead make electoral systems’...
Following the fallout of the Mirai botnet, security has risen to the top of the agenda for organizations buying connected devices. Organizations now understand the need to analyze IoT device code for lingering vulnerabilities. However, IoT firmware is binary, and typically vendors don’t share the...
In recent years, machine learning has made tremendous strides in the fight against cybercrime. But it’s not foolproof, and criminals have developed techniques to undermine its effectiveness. In today’s adversarial environment, organizations must deploy technologies that are resilient to attacks against machine learning. Machine Learning—Amazing, but...
As in recent years, 2017 has been marked by an increasing number of cyberattacks, and indications point to another tumultuous year as we head into 2018. With companies storing more data in the cloud and the number of Internet-connected devices rapidly increasing, the appeal and opportunity...
Breach Detection Systems (BDS) trap attacks that display sufficient evidence of a possible breach, but are at risk of false positives when the sensitivity level is set too low. Hunting attacks with anomaly detection systems can detect the attacks that are not trapped by the...
