A look back at the Heartbleed bug and measuring its’ legacy, impact and how some view one of cybersecurity’s biggest headaches as an important learning moment.
This is a great interview with Adam Shostack on all things threat modeling. He's often the first name that pops into people's heads when threat modeling comes up, and has created or been involved with much of the foundational material around the subject. Adam recently released a whitepaper that focuses on and defines inherent threats.
Resources:
...
SiliconAngle reports that more robust high-risk identity threat discovery and response efforts are being aimed by enterprise identity protection startup Semperis with its new machine learning-based Lightning Identity Runtime Protection identity threat detection and response service.
The U.S. Department of Justice announced that former National Security Agency information systems security designer Jareh Sebastian Dalke was given a prison sentence of 262 months, or nearly 22 years, for trying to sell confidential documents with U.S. national defense information to Russia, The Register reports.