2 min read
The AI Battlefield Intensifies
There is a cybersecurity arms race underway, and it is quickly changing how we fight cybercrime.
Read More
2 min read
The War on Residential Proxy Networks
Financial institutions have long relied on network‑based controls to keep criminals out of Internet Banking systems and other critical...
2 min read
How to Approach Third Party Reviews
One of the most important processes in cybersecurity for financial institutions today is third-party due diligence. However, it is also one of the...
2 min read
Ransomware Trends in 2025
Back in May 2024, I wrote that there were signs ransomware might finally be on the decline. I have continued to monitor various sources regarding...
2 min read
Incident Response Theater: Are We Just Playing the Role of Preparedness?
The curtain rises. The scene: a quiet sunny day on the teller line.
2 min read
The Wild, Untamed, and Exciting World of Passkeys
In today's digital landscape, securing user authentication is more critical than ever. Recently, I explored the benefits of using Yubikeys and...
3 min read
Is it Time to Go Passwordless?
For years, having long and complex passwords has been ingrained in us as a requirement, so it may seem strange to consider eliminating passwords...
3 min read
How to Manage Vulnerabilities
Most ransomware gangs gain their foothold in an organization by taking advantage of at least one vulnerability. The vulnerability may be on a user...
2 min read
Ruminations on the New Dodd-Frank Section 1033 Rule
When the Dodd-Frank Act was passed in 2010, it included Section 1033. This section required the Consumer Financial Protection Bureau (CFPB) to create...
2 min read
How I Became a vCISO
I have a lot of passion for my role as a Virtual Chief Information Security Officer (vCISO) for financial institutions, and I am always happy to tell...