Shostack + Friends Blog

Posts in category "microsoft"

screenshot from video: breaking into threat modeling

25 Years of Appsec - Appsec Global

Adam is delivering the opening keynote for OWASP Global Appsec 2021 with a 25 year restrospective on the history of appsec and a look into its future. (11 Nov 2021)

What are we going to do: CO2 edition

What happened when Microsoft tried to buy climate abatements (05 Oct 2021)

The Updates Must Go Through

The timing of updates is not coincidental. (14 Apr 2021)

Microsoft Autoupdate hangs Excel 16.47.21032301

Microsoft AutoUpdate for Mac has gotten exceptionally aggressive about running. Even if you use launchctl to disable it, you get a pop up roughly every 15 minutes of using an Office program. (26 Mar 2021)

Conway's Law and Software Security

[no description provided] (06 Jun 2018)

The Fights We Have to Fight: Fixing Bugs

[no description provided] (08 Nov 2017)

Our Favorite Content

General threat modeling posts

The Security Principles of Saltzer and Schroeder, illustrated with Star Wars

Subscribe (RSS/Mail)

RSS/ATOM: The RSS feed is here. We recommend RSS as the best way to follow this blog, and think generally RSS is the best way to take control of the information you take in. You can read our thinking here.

Email: If you’d like a lower volume set of updates on what Adam is doing, Adam’s New Thing gets only a few messages a year, guaranteed. We include a subset of posts in each.

Our site works best with Javascript enabled, however we have done our best to minimize any negative impacts to your experience without it.