Taylor Armerding is an award-winning journalist who left the declining field of mainstream newspapers in 2011 to write in the explosively expanding field of information security. He has previously written for CSO Online and the Sophos blog Naked Security. When he’s not writing he hikes, bikes, golfs, and plays bluegrass music. Follow him on Twitter @tarmerding2.
With the new PCI standards, the Payment Card Industry Security Standards Council intends to reduce credit card fraud. But the new standards may not be enough.
Posted in Financial Services Security, Security Standards and Compliance | Comments Off on New software standards aim to slow rampant credit card theft
Connected car security is a priority of the automotive industry, according to a recent report. But the shortage of resources and skills is a challenge.
Posted in Automotive Security, Featured | Comments Off on More resources needed to improve connected car security
How to prevent IoT hacks: Secure your software before you release it. It’s not that hard. So why aren’t more IoT device manufacturers doing it?
Posted in Featured, Internet of Things | Comments Off on The IoT: Still feature rich, security poor
Automotive cyber security is a high-stakes endeavor, as software vulnerabilities in connected cars can threaten lives. A new report reveals industry concerns.
Posted in Automotive Security | Comments Off on Study shows security challenges in the auto industry
The worst data privacy threat today isn’t data breach but data abuse. Organizations are using AI to learn more about us than we’d ever choose to tell them.
Posted in Privacy, Security Standards and Compliance | Comments Off on National Data Privacy Day is wishful thinking
The past decade charts the reach of open source into every industry. But what does the future of open source hold? Here are some open source predictions.
Posted in Open Source Security | Comments Off on The future of open source software: More of everything
Whatever happened to Stuxnet? Since it destroyed hundreds of centrifuges at a nuclear enrichment facility in Iran in 2010, the worm’s been quiet—but not idle.
Posted in Critical Infrastructure Security | Comments Off on Throwback Thursday: Whatever happened to Stuxnet?
The September GAO cybersecurity report stated that there are about 1,000 outstanding recommendations for automotive, military, and IoT security, among others.
Posted in Automotive Security, Government Security, Internet of Things | Comments Off on GAO report confirms major gaps in government cybersecurity
Patching issues fast is a step toward software security. But as the Click2Gov breaches show, zero-day vulnerabilities resist even the most persistent patchers.
Posted in Data Breach, Government Security | Comments Off on Click2Gov breaches show the power of zero-days
Passwords are antiquated and insecure. It’s time to eliminate them altogether. Experts from FIDO explain how to enable authentication without passwords.
Posted in General | Comments Off on Can we please drive passwords into extinction now?
Get the latest Software Integrity news, thought leadership, and more.
