My six month Hiatus from SecurityWeek is over! Here's a fun little piece that mostly wrote itself, about all the ways I've seen SMS being bypassed as a 2nd factor of authentication.
Cute insider note, when I asked the designers for an image of an older guy looking at his phone, they sent this one, with the caption "there's a sale on adult undergarments!"
My love letter to version 14.0 of the F5 product suite. These Top Ten articles are always popular with the engineers in the field, many of whom send directly to their customers.
These are always a ton of work for me, as I have to get the giant list of requirements, understand them, rank them, and write copy (and jokes) about them.
Even as I complain, I must admit that these were also my favorite articles for F5 :)
Here's an essay I wrote about what I think are the data privacy concerns around the Philippine National ID system (PhilSys). Having a national identification system is a good thing; this essay contains my advice to the implementors of PhilSys, so that they can most properly secure their citizen's data.
Networks Asia quoted me for a piece on Internet of Things and automated attacks
After receiving some media inquiries around the Philippines national ID system, I put together an essay, with the help of my indispensible personal assistant in the islands, on data privacy and the Philippine National ID system (PhilSys).
Back End Systems quoted me from the essay in this article. See F5 Labs for the main essay.
Here's a video interview done by none other than F5's Calvin Rowland himself. He and I are both 17-year veterans of F5 Networks, and we're both good (or at least energetic) on video. He's interviewing me for our Agility Live series, and I'm discussing some of our security research at F5 labs.
Bucket list item achieved. I was interviewed on live TV in the Philippines on the ANC Early Edition news program about consumer internet safety and how Filipinos view it through the lens of convenience vs. security. There were likely millions of people watching and but it was just so much fun! Would do it again :)
Here's an interview I did for Info Risk Today about blockchain and the Internet of Things.
We released an original report showing a spike in SIP protocol attacks against Singapore during the Trump / Kim summit there. Singapore Today interviewed me about the article.
I've been talking about this problem for years (it seems), but there's been an update. Toward the end.