Skip to main content

Shostack + Friends Blog

Recent Blog Posts, Page 5

Patching in 2024

In late 2024, people are being offered a choice of features versus security. (02 Nov 2024)

The Economy

Trump’s cornerstone economic policy is bad for America and the world. (01 Nov 2024)

Appsec Roundup - Oct 2024

If you say liability three times, it appears! (30 Oct 2024)

On policy

I wish this election were about policy (29 Oct 2024)

Russia

Some thoughts on Russia and the election (26 Oct 2024)

25 Years of CVE

Some thoughts on 25 years of the CVE program (25 Oct 2024)

Scaling Threat Modeling

Our newest course: Scaling Threat Modeling (22 Oct 2024)

The people who served under Trump

(20 Oct 2024)

MITRE ATT&CK: Threat Model Thursday

Threat model Thursday, let's dive deep into a detailed approach to using ATT&CK (17 Oct 2024)

OWASP Board 2024

Time to vote for OWASP leadership (15 Oct 2024)

Party over country

One of the things we expect of a politician in a civilized country is that they put their country first. (13 Oct 2024)

Coaching

Scaling threat modeling can be a challenge! (10 Oct 2024)

A Tale of Two Addresses

Output encoding is a tool, not a hammer. Or maybe it's a hammer. (07 Oct 2024)

On Democracy

Democracy has one function, and it’s under threat. (06 Oct 2024)

ThreatModCon San Francisco

Threatmodcon was amazing (03 Oct 2024)

<
1
…
3
4
5
6
7
…
44
>

Our site works best with Javascript enabled, however we have done our best to minimize any negative impacts to your experience without it.