Tyler Reguly

Tyler Reguly is Senior Manager, Security R&D at Fortra, responsible for overseeing TACTIC, a team of security researchers that provide the security expertise that powers the company’s Tripwire product line. Tyler joined Fortra when the company acquired Tripwire, a leader in File Integrity Monitoring, Secure Configuration Management, and Vulnerability Management, and where Tyler had been a part of the research team for more than fifteen years.

In addition to security research, Tyler has worked closely with Fanshawe College, from which he graduated with a diploma in Computer Systems Technology, developing five courses including subjects like Advanced Hacker Techniques & Tactics, Hacking and Exploits, Malware Research, Evolving Technologies and Threats, and Python Programming. He has also taught all five courses that he developed on multiple occasions. In addition, Tyler is a co-founder of the IoT Hack Lab that has been offered at SecTor (Security Education Conference Toronto) since 2015. The IoT Hack Lab provides conference attendees a chance to learn about IoT security and how to hack IoT devices. Finally, Tyler has presented trainings on IoT Hacking, Ghidra, and Wireshark in various conference and webinar settings over the years.

Tyler has contributed to various standards over the years including CVSSv3 and has provided technical editing to a number of published books. Outside of cybersecurity, Tyler regularly works with PR firms to provide movie reviews for yet-to-be-released films and frequently uses film to simplify cybersecurity concepts for general consumption.

Subject Matter Expert for:

Vulnerability Management, threat assessment, security research, asset discovery, Internet of Things (IoT), vulnerability research, cybersecurity trends, cyber-attacks, cyberstalking, application security, teaching cybersecurity, cloud security, secure configuration management, enterprise security, vulnerability scoring, cybersecurity metrics, patch Tuesday, cybersecurity, reverse engineering, security conferences, Python programming, CVE, CVSS, MITRE ATT&CK.

Notable Authored Publications:

• SSLFail.com Panel (SecTor, 2009)
• VMware ThinApp: Does Isolation Trim Your Risk (SecTor, 2012)
• MS14-030 [Microsoft Security Bulletin]
• RDP Fuzzing: Why the Microsoft Open Protocol Specification is Awesome! (HackerHalted, 2014)
• Combating Patch Fatigue: Is IT Overwhelmed to the Detriment of Enterprise Security (Tripwire, 2016)
• Article: Anyone Can Find You Online – and it isn’t that difficult (The San Diego Union-Tribune, 2017)
• Metrics for Managing and Understanding Patch Fatigue (RSA, 2017)
• Security Bulletins on Trial: Are Vendors Guilty of Information Obscurity (RSA, 2017)
• A Peep Into the Iron Triangle: IoT Purchasing in a ‘Me First’ Society (Sector, 2018)
• The Power of the Pico: Replacing Expensive Toys with the Raspberry Pi Pico (Sector, 2022)
• SecurityToday.com Contributed Articles
  • Data Breaches That Will Haunt You (October 31, 2017)
  • A Data Breach in Who-ville (December 22, 2017)
  • From Easter Egg Hunter to Online Sleuth (March 30, 2018)
  • How to Win Rebels and Influence Empires: A Star Wars Story (May 4, 2018)
  • Lessons Learned from Film: Traveling Securely on Memorial Day (May 25, 2018)
  • Is Cyber Security’s Nostradamus the Slasher Film Genre? (October 31, 2018)
  • Bon Bon: The Insider Elf (December 21, 2018)
  • Valentine’s Day 2019: Cupid, Computers, and Cinema (February 14, 2019)
  • What Clues Are You Leaving Online? Be Aware this Easter Weekend (April 19, 2019)
  • Insecurely Secure: A False Sense of Security (July 1, 2019)
  • This Thanksgiving, Be Thankful For Steps You Can Take to Protect Your Privacy (November 27, 2019)
  • Don’t Let ‘Christmas Phishing’ Ruin Your Holiday Season (December 18, 2019)
  • A New Decade Means a New Frontier in Technology and Security (December 30, 2019)
  • May the Fourth: Security Lessons from The Mandalorian (May 4, 2020)
• Tripwire State of Security – 184 Contributed Articles (examples below)
  • The Death Star’s Demise: Can You Trust Your IoT Vendors? (May 2021)
  • Save the Embarrassment: The Value of Two-Factor Authentication on Social Media (June 2021)
  • Out of Band (OOB) Data Exfiltration via DNS (April 2022)
  • Thank you for everything Mike. We’ll miss you. (April 2022)
  • Your Social Media Account Hasn’t Been Hacked, It’s Been Cloned! (May 2022)