Security Hot Takes & Threat Intel
Timely analysis of breaches, threat actor activity and emerging risks in AI and cybersecurity.
Intermediate
20 coursesHot Takes: Inside a Microsoft Ransomware Attack
The Marks & Spencer incident is a textbook example of how modern ransomware operations succeed by targeting identity infrastructure and virtualization hosts rather than individual endpoin...
IT Security Champion: Cyber Threat Intel and Emerging Threats
Security is everyone's job — not solely the responsibility of the security department. Adopting a security culture and a security mindset is the foundation of being an effective IT securi...
Security Hot Takes: The LastPass Breach
The LastPass breach is actually two distinct but connected security incidents, separated by several months, with confusing and inconsistent public communication from the company throughou...
Security Hot Takes: SBOMs
security · hot · takes · sboms · threat · intel · networking · systems · sbom · bills · materials · concept · debate · mandate · software.
Security Hot Takes: The Aliquippa Water Breach
The Aliquippa Water Authority breach is a case study in how a basic, avoidable systems-integration failure — not a sophisticated exploit — can expose critical infrastructure to compromise...
Security Hot Takes: Are You Pen Testing AI Apps?
AI applications are not "just another web app," and treating them that way leaves organizations blind to an entire class of risk. Historical precedent — such as attackers reverse engineer...
Security Hot Takes: Critical Infrastructure Advisory
This briefing walks through a joint cybersecurity advisory addressing Volt Typhoon, a People's Republic of China (PRC) state-sponsored threat actor, and what the findings mean for asset o...
Security Hot Takes: Near-Neighbor TTPs
The Nearest Neighbor Attack is a newly documented Initial Access TTP in which an attacker compromises a physically nearby, unrelated network, activates a Wi-Fi interface on a host within...
Security Hot Takes - ChatGPT
ChatGPT arrived as one of the most discussed technologies in cybersecurity history. This module explores its security implications through hands-on testing: what the model does well, wher...
Security Hot Takes: Federal Network Breach
This incident illustrates how a government-sponsored (suspected Iranian) advanced persistent threat actor compromised a U.S. federal civilian network using a combination of a well-known,...
Security Hot Takes: Why Fable Is the Most Dangerous AI Model You Can Almost Use
Fable 5 is presented in this briefing as the public release of a frontier model (Mythos) whose underlying capability was deliberately withheld from general availability because it can aut...
Security Hot Takes: The AI Gold Rush
The rapid, broad adoption of AI across both attacker and defender communities — the "AI gold rush" — has fundamentally changed the pace and character of cybersecurity work over roughly th...
Security Hot Takes: Buzzwords and Predictions
The overarching takeaway is that separating genuine technical substance from marketing language requires asking, for any buzzword: what specific capability gap does this actually close, i...
Security Hot Takes: Can Anthropic's Claude Out-Hunt Your Security Team?
Claude Code Security represents a genuine architectural shift in vulnerability discovery — from deterministic pattern matching to reasoning across code, data flow, authorization logic, an...
Security Hot Takes: The CrowdStrike Outage
The CrowdStrike Falcon outage was not a cyberattack — it was a software quality and release-engineering failure with the blast radius of one, because the defective component ran with kern...
Security Hot Takes: Cyber Resilience, the New Baseline
This discussion reframes cyber resilience as the new baseline expectation for security programs — not a replacement for prevention, but a necessary complement to it. The shift is driven b...
Security Hot Takes: Mid-Year Review 2024
The first half of 2024 confirmed a trend that had been building since 2021: adversaries are increasingly moving away from traditional initial-access techniques — phishing, browser exploit...
Security Hot Takes: Middle East Briefing
In late February of this year, the United States and its allies launched military strikes against Iran. That kinetic action is the backdrop for this briefing, but the more operationally r...
Security Hot Takes: The Rackspace Breach
The Rackspace Hosted Exchange breach illustrates how a known, already-patched vulnerability chain — not a true zero-day — can still lead to a major ransomware incident when patching is de...
Security Hot Takes: The Most Dangerous AI Model You Can't Have
On April 7th, Anthropic made an announcement that did not follow the normal pattern of an AI product launch. Rather than shipping a new model for public use, the company published a discl...
Interested in Security Hot Takes & Threat Intel?
Contact us to book a course or get a custom training plan for your team.