Breach of Confidence โ€” 17 July 2026

I've spent the week watching people argue about whether AI will replace security analysts whilst ignoring the fact that most organisations still can't tell you where their crown jewels are stored. Priorities remain wonderfully intact. Broadcom's Breakup Strategy Allstate tried to leave VMware. Broadcom immediately audited them, then sued them for leaving during the audit. … Continue reading Breach of Confidence โ€” 17 July 2026

Breach of Confidence โ€” 12 June 2026

This week I think I'd like a refund on my optimism. The Doxxer Gets Doxxed Someone in Spain leaked the personal details of police, prosecutors, and cyber officials across multiple platforms. They got arrested in Granada last week. The poetic justice of doxxing the very people tasked with preventing doxxing is absolutely chef's kiss. https://therecord.media/spain-arrests-suspected-hacker-for-publishing-data-on-sensitive-government-workersContinue reading Breach of Confidence โ€” 12 June 2026

Are we hiring for the wrong thing?

I see many job postings asking for someone who is 'passionate about cybersecurity.' Enthusiastic. A team player. Positive attitude preferred. And maybe I'm being a bit click-baity here, but they're hiring for the wrong thing entirely. The person you actually want exhibits the following: Upon receiving a beautifully wrapped gift, immediately wonders who sent it … Continue reading Are we hiring for the wrong thing?