Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Patching

Security Metrics, Recency Bias and Availability Heuristics

– I “recently” came across an article by Tom Chatfield with the title “The Trouble with Big Data? It’s Called The ‘Recency Bias,’” which is available at http://www.bbc.com/future/story/20160605-the-trouble-with-big-data-its-called-the-recency-bias The article was published on June 5,…

It’s About Availability and Integrity (not so much Confidentiality)

– I have frequently contended that the more important aspects of security are availability and integrity, not confidentiality (the old C-I-A triad should be A-I-C in order of importance). That is not to say that confidentiality and privacy aren’t extremely important—they certainly are. But in…

PCI DSS Position on Patching May Be Unjustified

– Verizon Business recently posted an excellent article on their blog about security patching. As someone who just read The New School of Information Security (an important book that all information security professionals should read), I thought it was refreshing to see someone take an…

Unofficially why 49/50 WordPress blogs are vulnerable: App Security and Dev

– There was a survey conducted that said that 49/50 WordPress blogs are running old and vulnerable versions of the software.I inquired about WordPress versions this past Saturday night at a blogger meetup I attended, mainly to share my experiences about blogging and meet other individuals who blog.…

PC World Knocks Apple Security

– In 10 Things We Hate About Apple, PC World writes: 7. Give Me a Sign Does anyone want to tell us when the next Mac OS X software updates will hit? What security vulnerabilities Apple is working on fixing? In April, Apple released a patch that plugged more than two dozen vulnerabilities–with…