'Stop Vaccine Finger Wagging'
Just stop.
Shostack + Friends Blog
Recent Blog Posts, Page 21
This time for sure, Pinky!
If everyone agrees on what we should do, why do we seem incapable of doing it?
IoT Security & Threat Modeling
Expanding on the UK Government's ‘The Uk Code of Practice for Consumer IoT Security’ and how it aligns with Threat Modeling.
Threat Model Thursday: Github's Approach
A bunch of people recently asked me about Robert Reichel’s post 'How We Threat Model,' and I wanted to use it to pick up on Threat Model Thursdays.
The Updates Must Go Through
The timing of updates is not coincidental.
Can Training Work Remotely?
I get this question a lot: Can distributed/remote training work as well as in person? Especially for threat modeling, where there's a strong expectation that training involves whiteboards...
Behind the Scenes: Training Development
Developing a training program is hard, especially when it will be delivered remotely.
Passover Pie
For Passover, we made a lamb and bitter greens pizza. Now, you may be saying to yourself that that’s wrong, but allow me to explain.
Threat Modeling Classes
Through the pandemic, I’ve rebuilt the way I teach threat modeling. The new structure and the platforms I needed to adapt for my corporate clients also allows me to offer the courses to the public.
Microsoft Autoupdate hangs Excel 16.47.21032301
Microsoft AutoUpdate for Mac has gotten exceptionally aggressive about running. Even if you use launchctl to disable it, you get a pop up roughly every 15 minutes of using an Office program.
Ever Given & Suez
Thoughts on the issues with the Ever Given blocking the Suez Canal.
Mmmm, Pandemic Puppies
Happy (Belated) Pi Day!
For pi day, we celebrated with a set of pies
Linkedin Learning
Bringing threat modeling to more and more people, now through a series of courses on LinkedIn.
My Year Without Flying
It was just over a year ago that I last walked out of the Seattle airport. Some thoughts from a very frequent flyer on the pandemic so far.