Thoughts on Simjacker

These are not my thoughts, rather my good friend Adrian Sanabria posted this in a thread on Twitter. I feel like a lot of great content by some very smart people can get lost in among the vast number of tweets, so I asked Adrian to blog... to which he said it would add a … Continue reading Thoughts on Simjacker →

Lost All The Money

After a several year hiatus, many creative differences, multiple instances of rage-quitting, and several occasions of ghosting so good that Patrick Swayze would have been proud - the group I founded, Host Unknown, has released it's much-awaited third song. We've covered security certifications, and we've tackled risk management. But this time, we've locked on to … Continue reading Lost All The Money →

Rocking IT

As I didn't get to attend Blackhat, BsidesLV, Defcon this year, I've been reading up on writeups from people that did attend to catch up on all the good knowledge that was shared. One of the interesting writeups I read was on CSO Online with the intriguing titles, The best and worst of Black Hat … Continue reading Rocking IT →

Writing Better Risk Statements

I found this post on my computer. I can't remember where it originally was posted (if it was at all), but I found it useful and thought I'd repost it again. Articulating risks in a clear and concise manner can greatly assist your company in making the right decisions. A typical example of poor communication … Continue reading Writing Better Risk Statements →

Unicorn Power

As of last week, it became official, that KnowBe4 became the latest Infosec unicorn. A what? A Unicorn is a term given to a private company that is valued at a billion dollars. How? An investment of $300m led by KKR, with participation from exiting investors, Elephant, and TenEleven Ventures boosted the company valuation to … Continue reading Unicorn Power →

FAQs: Joining KnowBe4

Welcome back from the mid-season break! Quick recap, I left AT&T Cybersecurity aka the company formerly known as AlienVault, so I wandered the earth like Caine from Kung Fu, took up yoga, and got into adventures. Just kidding, I’ve never tried yoga! I have joined KnowBe4 as one of their Security Awareness Advocates / Evangelists. … Continue reading FAQs: Joining KnowBe4 →

An alien no more

I resigned from AT&T Cybersecurity, the part of the company formerly known as AlienVault. It was a great place and I enjoyed my time there. The days were filled with joy, like lens flare in J.J Abrams Star Trek. But everything comes to an end sooner or later. And sometimes it's best to end it … Continue reading An alien no more →

The RSA 2019 Shortlist

Last week, Thom Langford wrote a post on his RSA 2019 itinerary, which featured some of the sessions he'd shortlisted to visit. I found it to be a useful list, and thought I'd try compiling my list of vendors I'd put on my shortlist to find out more about. My employer AT&T Business - 5545 … Continue reading The RSA 2019 Shortlist →

IRISSCON 2018 Recap

I finally made it over to Ireland! It's quite embarrassing having lived all my life in London that I never did get the chance to hop sooner. But we are where we are, and what better reason to go over than to attend IRISSCON. At the airport, I was about to board my flight I … Continue reading IRISSCON 2018 Recap →

Victim-blaming by any other name still smells just as bad

One of my favourite bloggers Troy Hunt posed a question on Twitter yesterday asking whether a user should share responsibility for a weak password that they reuse across multiple services. There was a lot of great discussion and debate, and I found myself opposing Troy’s views. It was getting late in the night and despite … Continue reading Victim-blaming by any other name still smells just as bad →