The reason this is challenging, of course, is that every company is unique. There are no cookie-cutter solutions; your interpretation will vary based on your risk tolerance. Like, a solution that provides adequate security for a SaaS provider might not be enough for ecommerce,

Uncover #CybersecurityRisks in #CriticalInfrastructure! Join Brian Foster, Lead OT Security Architect at #SouthernCaliforniaEdison, for a revealing discussion on insecure-by-design #controlsystem software. Let's strengthen the shield protecting society. buff.ly/3YQUJOr

Killer robots cited. Calling K. Reid Wightman 🌻 schneier.com/blog/archives/…

Checkmarx reported that malicious actors have been able to compromise GitHub's Dependabot, the free automated dependency management tool for software projects. Learn more here:bit.ly/3LFX4Gp #DevOps

Yikes.

S4x24 tickets on sale now at universe.com/events/s4x24-t… 1st 100 tickets sold in the first two hours, but we keep the ticket #1 - #100 price until noon EDT on Tuesday, Oct 3 to be fair to all time zones. Ticket also gets you coveted hotel block info.

The new E-ELEC rate schedule from CPUC and PG&E ... incentive for residential storage to meet 100% renewable target. Welcome to California, have a nice off peak day.

@_msw_ Alan Coopersmith @[email protected] Another case of 9.8 as the default score for no particular reason.

Nice to hang out with bryan owen this week at #AVEVAWorld. Great presentation on PIsec!

“At the event, Microsoft's David Weston, VP of operating system security and enterprise, revealed Redmond has committed $10 million to the development of Rust tooling as the software titan standardizes on Rust and other memory safe languages.”

#BEERISAC location 2 is at Lagniappe maps.app.goo.gl/4oSms9heT41bhQ… (Uber required). Get there when you get there, any time after the conference day (earlier is better). No coin or alcohol needed, just bring your awesome self.

Tonight’s #BEERISAC meeting for #RSAC is at Tequila Mockingbird maps.app.goo.gl/7d3LrjkuGcjsfx… starting anytime after 8:00. No coin or alcohol needed to attend. Just bring your awesome self.

I'm teaching a 4-day technical Industrial Control Systems training at Black Hat in Las Vegas this summer. 👉 Learn all you need to start build, breaking and securing ICS Register before 📅May 24th to get the early bird price: 💰300$ off!💰 blackhat.com/us-24/training…

Link to the report: ntsb.gov/investigations…

Today's Crowdstrike fuck up is just proof for what I've been saying for years. "security" software and most anti viruses themselves are essentially rootkits, they embed themselves too deep into the system to the point where they have almost kernal level access to anything and can

This was a key decision we made at the very beginning of Capsule8: we would not be a kernel module and only use kprobes/uprobes as provided by the Linux kernel so that we could never panic the kernel. Choosing safety from the beginning made us have to work harder, but was right.

AVEVA nominations for our sustainable impact award #AVEVAWorld please check out the companies and vote!