Hey Security Leader, You Need to be a Better Storyteller
CISOs that can sell create more secure organizations.
Topic
security
A collection of 11 issues
Wiz's Check Mate and Advice for Early Stage Cybersecurity Marketing Leaders
Build for the platform and the prospect
Cybersecurity market trends
Quick takeaways from Palo Alto Networks' seminal 134-page PDF
My top 7 security posts from the past year
At Lightspin we brought you the Top 7 Cloud Attack Paths of 2022, and in honor of that, I’ve compiled 7 posts from the (mostly 2022) infosec social media archives, some you have seen, others you probably haven’t.
Here’s to doing security even better in 2023, and
AWS Security Bulletins and Cloud Security Researcher Trends
In the last 5-years, AWS has published on average just over 7 security bulletins per year.
This year has seen the most bulletins published since 2017 when there were 12 (though 8 of them were related to the Xen hypervisor so you could argue there was more like 4 -
HACK Issue 15: K8s is hard to value, Twitter will never hire a CISO, and The key to community
Happy Easter and Passover weekend! It's a busy week in the Tucker household as
we recognize Good Friday, enjoy easter festivities with the kids (egg hunts and
candy!) and dinner with the family. Whether you celebrate or not, I pray you
have a refreshing weekend!
Security links and
HACK Issue 12: Okta breach recap, Ryan Reynolds loves 1Password, and Zelenskyy's leadership
Hello dear readers, great to be back in your inbox after a 2-week break. I was
able to travel to Tel Aviv for work
[https://twitter.com/luketucker/status/1501907034383466503?s=20&t=FxWEeMs69bOzgrTCCYRdZQ]
and California for a wedding
[https://twitter.com/luketucker/status/1506055697615650820?s=20&t=
Offensive Hacking Education Landscape
A few weeks ago there was a dust up on the bug bounty and pentesting corner of
infosec twitter with certain content and tool creators in the space calling out
others.
While there are some charlatans, or “grifters” as The Cyber Mentor calls them,
there are many great providers of
HACK Issue 002: Log4J, 7 stages of DevSecOps 0-day grief, and how not to announce your recent funding round
Greetings from Boise!
Welcome to issue 002 of HACK, my newsletter where I talk about and curate news
about security, marketing, community, hackers, and leadership.
I'm going to be experimenting with the format and content a bit, so do let me
know any feedback you have, I would
The 7 Stages of DevSecOps 0-day grief
The past 2-weeks have been pretty crazy for those in the security industry. The
Log4j vulnerability has broad-reaching impact. Scott Crawford, Head of Research
at 451 had a good post on LinkedIn. Here's an excerpt.
> Last December, the technology world was shaken by one of the most