Ransomware: When to pay (and when not to)
While most security professionals argue against paying the ransom, there are some cases where paying is the right choice for an organization. Learn what to consider, and how to decide.
Security
Insights, tools, and best practices to keep your organization and users secure.
Better security starts and ends with humans
An interview with Scout Brody, Executive Director at Simply Secure.
Threat intelligence and ransomware
Understand the latest ransomware delivery methods, use the latest network indicators, and detect the latest behavioral indicators.
Strengthening defenses against human-centric vulnerabilities
Five questions for Andrea Limbago: Insights on how social science can improve an organization’s security strategy.
“The Internet is going to fall down if I don’t fix this”
An interview with Susan Sons from the Center for Applied Cybersecurity Research at Indiana University.
Gilad Rosner on privacy in the age of the Internet of Things
The O’Reilly Hardware Podcast: Safeguarding against new privacy risks.
Securing application deployments in CI/CD environments
Binu Ramakrishnan highlights current security risks and CI/CD threat modeling and presents security patterns-based techniques to mitigate these risks, including a novel idea called auth events to delegate user privileges to CI/CD workflow jobs.
Innovation vs. invasion: Inserting privacy controls and due process into semi-autonomous algorithms
Matthew Carroll highlights the current design model for machine learning and deep learning and discusses new methods that make privacy an embedded feature.
Building solutions at the first O’Reilly Security Conference and beyond
Thoughts from O'Reilly Security Conference committee chairs Courtney Nash and Allison Miller on the New York event's spotlight on defenders, focus on supporting the defender community, and taking the event to Amsterdam.
Making the most of your IOC data
Five questions for Alex Pinto: Data-science techniques for incorporating indicators of compromise into your threat intelligence strategy.
Let’s fix this thing: Results from our first hackathon
Dan Kaminsky on the progress made at O’Reilly Security’s first hackathon to make web security easier.
Disaster preparedness for security professionals
Five questions for Desiree Matel-Anderson: Insights on FIT’s three-step methodology for maneuvering through cybersecurity emergencies.
Move fast and fix things
Join Dan Kaminsky at the O’Reilly Security Hackathon to help make web security easier and more effective.
Breaking the security status quo: Let’s make security easy(er)
As the dust settles on last week's DDoS attack, it’s time to ask—and act on—the question of “Now what?”
How the EU’s GDPR affects all of us
Five questions for Chiara Rustici: Insights on the global impact of the new General Data Protection Regulation, and how to get started with implementation.
6 ways to hack the O’Reilly Security Conference CFP
Tips for writing a successful proposal for the O'Reilly Security Conference.
The myth of the sophisticated hack
Cracking the misconception that hacks are sophisticated and complex by breaking down the most common attack categories.
The economics of security
Five questions for Fernando Montenegro: Insights on how to apply economic theory to solve security challenges and improve an organization’s overall security posture.
Understanding the performance penalty: HTTP vs. HTTPS
Using RUM to analyze HTTP vs. HTTPS in different world regions and across wireline, rural wireline, and wireless ISPs.
Incident management at the edge
Lessons learned at Fastly: How to build a robust system that identifies, mitigates, contains, and properly communicates incidents to prevent recurrence.
Securing your multi-tenant CI/CD platform
5 questions for Binu Ramakrishnan: Insights on the threats of centralized multi-tenant CI/CD environments, common protection methods, and tips for improved security.
Meeting the ransomware challenge
5 Questions for Timothy Gallo and Allan Liska: Insights on common ransomware delivery methods and how to find balance between minimizing attack risks and maximizing productivity.
This is how we do it: Behind the curtain of the O’Reilly Security Conference CFP
Insider information on the O'Reilly Security Conference proposal process, including acceptance and rejection stats.
Improving security team collaboration and productivity
Five questions for Laura Mather: Insights on how groupthink and heterogeneous teams impact decision-making.