For the times you feel like the ball inside a pinball machine.    

A bug bounty is a reward handed out by companies to people who disclose bugs or vulnerabilities to them in a responsible manner. Think of it like the wild west where anyone is deputised with powers to chase after the Kid and claim the reward dead or alive. Traditionally companies like Google and Facebook offered … Continue reading Bug Bounty →

A tropical Island paradise, a Russian millionaire and hackers may sound like the plot of a James Bond movie, but they are actually references to Kaspersky’s industry analyst event in Punta Cana, Dominican Republic, where the company was expected to divulge its plans, aspirations and research to analysts from around the world. Four of 451 … Continue reading Security Dialectic: Kaspersky Industry Analyst Summit →

The folks at Information Security Buzz were asking a bunch of people for their tips in how to avoid phishing scams. I responded in the form of a video.

Lemonade is big business - lemonade made from natural ingredients even more so... but what happens when your lemonade isn't quite what you thought it was? We bring you this special report.

If 2013 was a movie... these are the end credits.  

When I was an intern, we found a database. It looked like - like, butchered. The old mainframe women in the basement crossed themselves... and whispered crazy things, strange things. "El Diablo cazador de hombres." Only in the hottest years this happens. And this year the cooling system failed. We find data servers sometimes without … Continue reading APT Predator →

It's the time of the year where people come out with their annual security predictions... I took some inspiration from these posts by Martin McKeay, Dave Lewis and Steve Ragan to come up with my own security predictions. Warning - these predictions are so mind-blowingly awesome that you'll think I really do possess psychic powers! Warning … Continue reading 2014 Information Security Predictions →