TDL 007 | Cyber Warriors & Digital Shadows: Insights from Canada’s Cybersecurity Leader
In this episode of The Defender’s Log, host David Redekop interviews Sami Khoury, the Senior Official for Cybersecurity for the...
Security Bloggers Network
OAuth for MCP – Emerging Enterprise Patterns for Agent Authorization
By Thomas Segura TL;DR: OAuth 2.1 is a solid foundation for MCP, but the non-deterministic nature of agent interactions introduce...
Differences Between Secure by Design and Secure by Default
Introduction: The Rising Importance of Proactive Security Okay, so, proactive security – it's kinda a big deal now, right? I...
Evaluating the Best Passwordless Authentication Options
The Rise of Passwordless Authentication: Why Now? Okay, so passwords, right? We all hate 'em, and honestly, they're not even...
Attack Surface Management vs. Vulnerability Management — What’s Changed
For years, vulnerability management (VM) has been a cornerstone of cybersecurity services. Managed Security Providers (MSPs) and Managed Security...
Azure B2C Alternative for Startups
I once spent three solid days chasing a bug in Azure B2C’s custom policy engine — a mismatch in claim...
Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice
Overview Recently, NSFOCUS CERT detected that Samba released a security update to fix the Samba WINS command injection vulnerability (CVE-2025-10230);...
How Votiro Turns Threat Prevention Into Intelligence
October 16, 2025 Most organizations view file sanitization as the final step, a gatekeeper that prevents malware from entering the...
SIEM, Startups, and the Myth (Reality?) of IT Inertia: A Reformed Analyst Reflects on SIEM MQ 2025
Vaguely magical and quadranty thing (Gemini) It’s not every day you get to reflect on a journey that started as an...
Satisfying Regulatory Requirements with PAM
How Do Non-Human Identities Impact Your Organization’s Cybersecurity Strategy? If you’ve ever pondered the complexities of managing machine identities, you’re...
Foster Innovation with Strong NHI Security Measures
Are Your Machine Identities Truly Secure? The notion of securing Non-Human Identities (NHIs) often takes center stage. Where machine identities...
Choosing the Best NHIs Options for Your Needs
What Are Non-Human Identities (NHIs) and Why Are They Crucial for Modern Cybersecurity? Have you ever wondered how machine identities...
NDSS 2025 – Workshop on Binary Analysis Research (BAR) 2025, Session II: Applying Binary Analysis
Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS...
Qantas, DraftKings, and Other Recent Breaches
Mid-October Check-In Here we are in mid-October, and 2025 shows no signs of slowing down on the cyber front. In...
From Generic Code to Specialist AI: How MCP Will Reshape the Developer Experience
One of the challenges with using AI and LLMs to generate code today is that they mostly produce generic code....
