Adam Shostack – Medium

Adam Shostack

25 Years In AppSec: Looking Back

Twenty-five years ago I published a set of code review guidelines that I had crafted while working for a bank. I released them (thanks…

Aug 10, 2021

25 Years In AppSec: Looking Back

Aug 10, 2021

Ransomware is not the problem

There’s an infinite number of studies of ransomware lately, all breathlessly talking about how to fight this dangerous threat. They’re all…

Jun 9, 2021

Jun 9, 2021

Recording Lectures

People sometimes ask me about my recording setup, and I wanted to share some thoughts about recording good learning content. The most…

Jun 1, 2021

Recording Lectures

Jun 1, 2021

Practical Cybersecurity Architecture

There’s an insightful comment, “Everybody has a testing environment. Some people are lucky enough enough to have a totally separate…

May 26, 2021

May 26, 2021

nack My Year Without Flying

It was just over a year ago that I last walked out of the Seattle airport. Before the pandemic, I was a very frequent flyer. As the…

Feb 18, 2021

nack My Year Without Flying

Feb 18, 2021

“Better OKRs Through Threat Modeling”

Abhay Bhargav has a really excellent post on Better OKRs for Security through Effective Threat Modeling. I really like how he doesn’t…

Feb 15, 2021

The words “OKRs in threat modeling”

Feb 15, 2021

Vaccines

You may have noticed that my end of the year posts are all science focused. Today, a set of resources on the COVID vaccines.

Dec 28, 2020

Vaccines

Dec 28, 2020

Dinosaur Feathers

Scientists have discovered a chunk of amber with a dinosaur tail in it. (Poor dinosaur!) National Geographic has the story, which is not…

Dec 24, 2020

Dinosaur Feathers

Dec 24, 2020

The Asset Trap

As we look at what’s happened with the Russian attack on the US government and others via Solarwinds, I want to shine a spotlight on a…

Dec 16, 2020

The Asset Trap

Dec 16, 2020

Fireeye Hack and Culture

Fireeye’s announcement of their discovery of a breach is all over the news. The Reuters article quotes a ‘Western security official’ as…

Dec 9, 2020

Dec 9, 2020

Adam Shostack

Adam Shostack

Generally blogging at adam.shostack.org/blog, but shared posts here before Medium asked me to jump through more and more hoops..

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech