Shostack & Friends Blog

We bring you the latest updates from Shostack & Friends Blog through a simple and fast subscription.

We can deliver your news in your inbox, on your phone or you can read them here on this website on your personal news page.

Unsubscribe at any time without hassle.

Shostack & Friends Blog's title: Shostack + Associates > Home

Is this your feed? Claim it!

Publisher: Unclaimed!

Message frequency: 0.28 / day

Message History

Appsec roundup - May 20261 day

New repudiation threats, fascinating results from rewriting code in rust, a new strategic plan for OWASP, AIs love their own slop, two new books, and more!

This month leads off with economics: James Shore explains that You Need AI...

Read full story

UW Cyberday: Threat Modeling in the Age of AI1 week

Slides for today's talk

I’m happy to be speaking today at CyberAI, a Cybersecurity AI Conference at UW Bothell.

My slides are here”

Read full story

Focus on high priority threats(?)1 week

It’s easy to think prioritization is an easy problem, but it’s one deserving careful consideration.

“We need to focus on high priority threats!”

We hear this all the time. In fact, it was practically a refrain at a recent National Academies Forum on Cyber Resilience meeting on

Read full story

Vulnerability Finding: Two Inflection Points1 week

Understanding the numbers from Anthropic and the system that surrounds Glasswing gives us new possibilities for effective defense.

In February, before project Glasswing, I wrote about An Inflection Point in Vulnerability Finding. Friday, Anthropic released a l...

Read full story

Remembering Peter Neumann2 weeks

Peter Neumann helped define the field, and my career. He'll be missed terribly.

Peter G. Neumann has passed, and we are all poorer for it. John Markoff wrote his obituary for the New York Times, and Gene Spafford and ...

Read full story

Login to follow.it

Keep me logged in

Or:

Don't have an account yet?

Shostack & Friends Blog

Message History

Delivery option(s)