Shostack + Friends Blog

Recent Blog Posts, Page 11

Insecurity of Government Infrastructure

We have a new paper at NDSS (26 Feb 2024)

 

Solving Hallucinations

Solving hallucinations in legal briefs is playing on easy mode —— and still too hard (23 Feb 2024)

 

ThreatModCon Lisbon 2024

Submit your papers for ThreatModCon 2024 now! (21 Feb 2024)

 

Blackhat and Human Factors

BlackHat invites human factors work (19 Feb 2024)

 

Conoscere Il Lato Oscuro

Threats is available in Italian! (14 Feb 2024)

 

The Security Table: Podcast Episode with Chris Romeo

Adam on The Security Table podcast (07 Feb 2024)

 

My Instructional Journey

Thoughts on my instructional journey - and what yours might be (06 Feb 2024)

 

Application and AI roundup - Jan 2024

A busy month+ in appsec, AI, and regulation. (29 Jan 2024)

 

Red Teaming

Red Teaming by Bryce Hoffman is a thought-provoking read. (21 Jan 2024)

 

CSRB Senate Hearing

Comments following the Senate’s CSRB hearing (19 Jan 2024)

 

Threat Modeling Capabilities Released

A great new resource for threat modeling (12 Jan 2024)

 

Red Queen Dynamics: Podcast Episode with Tarah Wheeler

Adam on Red Queen Dynamics podcast (05 Jan 2024)

 

The State of Appsec in 2024

2024 is bringing lots of AI, and Liability, too (02 Jan 2024)

 

Think like Sieged-sec?

Yet again, attackers surprise us (29 Dec 2023)

 

Giant Pink Bunny, Redux

Art is transient (27 Dec 2023)