“I suspect most of the DoD and intelligence community have their security acts together, although the insider attack performed by Edward Snowden against NSA proves that even the most paranoid have weaknesses,” Dickson says. “I think the government agencies face two problems. First, they run a ton of legacy systems and have various constraints that […]
“ThreadFix is a platform that allows organizations to manage and run their application security programs,” Dan Cornell, CTO of Denim Group, told eWEEK. Cornell explained that with ThreadFix an organization can list all the development teams that build software and all the applications that each team is responsible for.
“ThreadFix is a platform that allows organizations to manage and run their application security programs,” Dan Cornell, CTO of Denim Group, told eWEEK.
“Handing a developer a security tool is not a recipe for success, but if you can craft the developer’s experience using that tool, and better integrate with the developer tool chain, then you have a real increase in the consumption of security testing.” —Dan Cornell, Denim Group
“I would argue that fake news has had less of an impact on the security industry than society as a whole,” says John Dickson, principal of Denim Group. “Most security folks are skeptical bunch. They are always on watch for inbound phishing and social engineering campaigns, and thus are probably bigger doubters than the average reader.
Improvements in credit card fraud detection have pushed hackers to focus on stealing legitimate login credentials, so adding an extra layer of protection to these accounts is a must, says John Dickson with the cybersecurity firm Denim Group.