The Shift in Cryptography The foundation of internet security rests on specific mathematical assumptions - problems that are computationally infeasible for classical computers to solve. However, the theoretical boundaries of computing are expanding rapidly. Quantum computers represent a shift that will eventually make our current asymmetric encryption methods obsolete. Powerful...
Introduction I need to say something that will make security vendors hate me. Most security spending is wasted. Not all of it. But most of it. I have watched companies spend millions on security tools that never detected a single threat. I have seen teams buy CNAPP platforms that sat...
Introduction So, you've deployed Tetragon and you're seeing the kernel-level security events it produces. You can see every process execution, every network connection, every file access. This is a goldmine of security data. But it immediately leads to the next big question: where do you put...
Introduction Finally - attack path analysis has arrived in AWS. 🎯 While GCP and Azure have long offered attack path analysis, AWS was suspiciously quiet. That silence is finally over. With Security Hub v2, AWS is finally bringing modern risk-based prioritization to its native ecosystem - not just listing misconfigurations, but...
Introduction While building Lambda-based automation for patch management and security hardening, I frequently ran into a frustrating problem: some EC2 instances failed during software installation or SSM command execution. Usually the root cause was that the instance wasn’t a Managed Instance in SSM. An EC2 instance must be managed...
The Challenge of Security Visibility in the Past Back in the day, we followed best practices to configure our services securely. However, there was always the question: Did we actually configure everything correctly? Even if we used tools to identify misconfigurations, they rarely provided a comprehensive view across all services,...
