CONTRIBUTOR RAY POMPON

blog /Okt 17, 2017

How to Be a More Effective CISO by Aligning Your Security to the Business

Security must align to the business needs, not the other way around. Begin with investigation and understanding to be most effective.

blog /Okt 03, 2017

Proposed Legislation Calls for Cleaning Up the IoT Security Mess

Legislation is a good first step toward persuading IoT manufacturers (who want to stay in business) to do the right thing when it comes to the security of their devices.

blog /Sep 28, 2017

Phishing for Information, Part 5: How Attackers Pull It All Together, and How You Can Fight Back

Stop feeding attackers every piece of the puzzle they need to pull off their scams.

blog /Sep 26, 2017

Five Reasons CISOs Should Keep an Open Mind about Cryptocurrencies

Far from a dying breed, cryptocurrencies are not only evolving but being accepted in countless new markets. CISOs need to know the ins and outs, pros and cons.

blog /Sep 07, 2017

Phishing for Information, Part 4: Beware of Data Leaking Out of Your Equipment

Organizations often overlook the many ways in which their own systems put useful information right into the hands of attackers building cyber scams.

blog /Aug 31, 2017

Six Steps to Finding Honey in the OWASP

According to Verizon’s 2014 Data Breach Investigations Report, “Web applications remain the proverbial punching bag of the Internet.” Things haven’t improved much since then. What is it about web applications that makes them so...

blog /Aug 29, 2017

URL Obfuscation—Still a Phisher's Phriend

Cyber crooks use several common URL disguising techniques to trick users into thinking their sham sites are legitimate.

blog /Aug 22, 2017

Phishing for Information, Part 3: How Attackers Gather Data About Your Organization

The Internet is full of information about your company that’s easily accessible to anyone and particularly useful to attackers.

blog /Aug 15, 2017

Where Do Vulnerabilities Come From?

Vulnerabilities are an emergent property of modern software’s complexity, requested features, and the way data inputs are handled.

blog /Jul 20, 2017

Phishing for Information, Part 2: How Attackers Collect Data About Your Employees

The personal and job-related information that employees often innocently post on various websites makes it easy for phishers to pull off their scams.

stay up to date

Get the latest application threat intelligence from F5 Labs.

There was an error signing up.
Thank you, your email address has been signed up.

Follow us on social media.