Tag Archive for: 18th

CISO Thoughts with David Lindner – March 18th

/in


CISO Thoughts with David Lindner - March 18th

Insight #1

If you can accomplish one thing in your AppSec program this year, it should be keeping secrets out of your source code. The number of secrets in source code is doubling year over year, which will lead to more breaches. There are many options to detect secrets both pre and post-commit, implement them both today!

Insight #2

Security is all about the relationships you build. This is especially true for application security professionals. We must have close bonds with our development teams, to not only understand and empathize with their deadlines but also to understand the implications of any security imposed changes. Pick up the phone, open a Zoom call, build those relationships and your success metrics will improve.

Insight #3

President Joe Biden signed the Cyber Incident Reporting For Critical Infrastructure Act of 2022. This act requires critical infrastructure entities and federal government agencies to report cybersecurity incidents within 72hrs of an incident. Transparency is a key component in the cyber security world and can lead to preventing future exploits. If you don’t fall in the defined entities, I would still strongly suggest you follow the requirements to report incidents in a similar fashion.

David Lindner, Chief Information Security Officer

David Lindner, Chief Information Security Officer

David is an experienced application security professional with over 20 years in cybersecurity. In addition to serving as the chief information security officer, David leads the Contrast Labs team that is focused on analyzing threat intelligence to help enterprise clients develop more proactive approaches to their application security programs. Throughout his career, David has worked within multiple disciplines in the security field—from application development, to network architecture design and support, to IT security and consulting, to security training, to application security. Over the past decade, David has specialized in all things related to mobile applications and securing them. He has worked with many clients across industry sectors, including financial, government, automobile, healthcare, and retail. David is an active participant in numerous bug…

Source…

This Week In Techdirt History: April 12th – 18th

/in

Five Years Ago

This week in 2015, the White House was floating the idea of crypto backdoors while the Senate Intelligence Committee was finally deciding it should maybe keep a real eye on the Intelligence Community, and we learned that the Baltimore Police Department had asked the creators of The Wire to not include details about their cellphone surveillance tools. The lawsuits against the FCC’s net neutrality rules were pouring in from the usual suspects while Republicans were rushing to kill the rules and Verizon was claiming that nobody really wants unlimited data. We also got a look at some emails from MPAA boss Chris Dodd, revealing the organization’s real feelings about fair use (it’s bad!) as well as its feelings about giving money to politicians involved in writing copyright law (it’s good!)

Ten Years Ago

This week in 2010, Apple was exercising its control over the iPhone ecosystem, a book publisher was trying vainly to exercise control over people ordering books from abroad, and a Japanese newspaper was hoping to exercising control over whether people can link to its website. The TSA admitted that body scanners could save images, the RIAA insisted that musicians can’t make money without them, and telcos still maintained that Google was getting a “free ride”. This was also the week that an online publication won a Pulitzer for the first time, and the week that the Library of Congress announced it would begin storing tweets.

Fifteen Years Ago

This week in 2005, we took a look at how tricky things were getting in the VoIP space because people were forgetting or ignoring the fact that voice is data. We were pleased to see IBM free up a bunch of patents, but wondered why the New York Times felt that this was so baffling it needed exhaustive explanation. A customer sued Comcast for handing their info over to the RIAA, muni broadband was doing better in some places than people thought, and Google quietly launched its pre-YouTube video offering. Meanwhile, we were shocked-not-shocked to learn things like that people prefer buying cars online and mobile carriers won’t make money selling music.

Techdirt.

This Week In Techdirt History: January 12th – 18th

/in

Five Years Ago

This week in 2015, New York’s top prosecutor was jumping into the war on smartphone encryption alongside UK Prime Minister David Cameron who appeared to express a desire to undermine all encryption, while President Obama announced a broad plan for “securing cyberpsace” that looked an awful lot like a law enforcement wish-list — all despite the fact that a leaked internal intelligence community document revealed recommendations for stronger and more encryption. And the NSA was apologizing for backdooring encryption, but in a “sorry we got caught” kind of way.

Ten Years Ago

This week in 2010, we highlighted an excellent open letter to rock stars telling them to stop pretending they are fighting for up-and-coming artists with their copyright demands and anti-internet rhetoric. Marvel was trying to downplay Josh Kirby’s work as part of the copyright termination fight, one school was trying to claim copyright over lesson plans while another was considering an anti-piracy campaign inspired by anti-drug campaigns, Grooveshark was sued yet again so negotiation-by-lawsuit could continue, and France’s three strikes agency was caught pirating a font. But one big surprise was that the administrator of the OiNK torrent tracker, after explaining why he believed his system was legal, was found not guilty by the jury in a rare win sensible copyright.

Fifteen Years Ago

This week in 2005, in a similar nice surprise, a file sharing network in South Korea was left alone by the courts. And who would think it was the head of Blockbuster Video in the UK who would be getting the right idea about how Hollywood needs to innovate if it wants to fight piracy. A new spam tactic was causing problems for the DNS system, company IT departments were struggling with what to do about personal devices, and paid search keywords were becoming a major public relations battleground. This was also the week that Apple released the first Mac Mini and the iPod Shuffle.

Permalink | Comments | Email This Story

Techdirt.

This Week In Techdirt History: August 18th – 24th

/in

Five Years Ago

This week in 2014, all eyes were on the protests in Ferguson, Missouri where police were threatening and arresting reporters even after, it turned out, they signed a court agreement promising not to. It was a stark example of the broader problem of police militarization, a trend promoted by defense contractors thanks to which police in the suburbs sometimes have more powerful weapons than Marines in Afghanistan, and of course the routine use of tear gas which is a banned chemical weapon except for domestic use thanks to… an exception lobbied for by the US.

Ten Years Ago

This week in 2009, we wondered if there could be any such thing as a fair trial about file sharing given the proliferation and normalization of biased language about “piracy” and “property”. Courts were busy insanely slicing and dicing the Superman copyright, the IFPI was insisting that the Pirate Party shouldn’t be allowed to hold the positions it does, music publishers were waging their war against lyrics websites, the Associated Press was still utterly failing to explain its plan to DRM the news, and we saw the kickoff of a new copyright maximalist push in the UK after Lord Peter Mandelson spent the weekend with David Geffen. We also took a look at a murky and possibly-apocryphal, but nevertheless interesting, story about what might have been the first-ever copyright trial in 6th century Ireland.

Fifteen Years Ago

This week in 2004, after all the hype, the Google IPO… was delayed by the SEC. Then the company admitted it had been a bit overly optimistic by lowering the IPO range and cutting the number of shares, before finally actually going public and only hitting the bottom price of the reduced range.

Also this week in 2004: music labels were continuing to bet the farm on ringtones being more than a trend, Real was hoping its battle with Apple would spark some good customer responses but apparently forgot it still wasn’t a super-popular company, and an appeals court upheld the all-important Grokster decision.

Permalink | Comments | Email This Story

Techdirt.