VM.2: To Cloud or Not to Cloud? That is the Question…
In my second vulnerability management blog post (part one here), I’ll focus on-premise vs. cloud-based questions and try cover some…
Five Quick Wins from Verizon’s 2013 Data Breach Investigations Report
It’s that time of year again – new 2013 IT Security reports – trends, breach investigations, and more on 2012…
On Defending Against Unintended Consequences
With all the precautions you can take to actively protect sensitive data on your web server, sometimes there are unintended…
Critical Internet Explorer Updates Released
This week Microsoft released two critical Internet Explorer updates, and everyone should update IE as soon as possible. MS13-038 contains…
Game of Pwns: Syrian Electronic Army and Information Warfare
The Syrian Electronic Army has claimed another victory by defacing the Financial Times website as well as several Twitter accounts…
SHODAN: The Scariest Search Engine
Tripwire’s CTO Dwayne Melancon discusses SHODAN, which “exposed dozens of digital security risks involving local businesses, schools and governments, including…
Building Trust Among Cyber Tribes
I recently had the pleasure of interviewing my good friend Chris Blask, Chair of the Industrial Control System Information Sharing…
The Security Implications of Agile Development
Dwayne Melancon, CTO of Tripwire, discusses how to maintain a strong security posture in an environment where companies are pushing…