Shostack + Friends Blog

As we look at what's happened with the Russian attack on the US government and others via Solarwinds, I want to shine a spotlight on a lesson we can apply to threat modeling. (16 Dec 2020)

So far, so good. (15 Dec 2020)

Early DRM artist recently passed away. (13 Dec 2020)

Thoughts on the recent Fireeye Hack and the culture surrounding breaches (09 Dec 2020)

The video of my Distinguished Lecture at Ruhr University Bochum is now online, and I've got reference to share as well. (07 Dec 2020)

Something to consider (04 Dec 2020)

Help me help you... (25 Nov 2020)

Going beyond the whiteboard. (23 Nov 2020)

Speaking up (22 Nov 2020)

A diverse set of experts and advocates for threat modeling are releasing a threat modeling manifesto, modeled after the agile manifesto and focused on values and principles. (17 Nov 2020)

Additional thoughts on the subject. (11 Nov 2020)

A little something to make you smile today: (06 Nov 2020)

A colorful map shares a powerful message. (04 Nov 2020)

The legitimacy of the outcomes of our election are already under aggressive and sustained attack. (02 Nov 2020)

With three days to the US election, the outrage machines are running on all cylinders. It'll be easier to stay happy if you remember to notice them. (31 Oct 2020)