How to Get a Meaningful Security Assessment

The curriculum of business schools are filled with case studies of companies that took short cuts to become competitive and accomplished the exact opposite.  For the information security world, there is a similar “penny-wise, pound-foolish” behavior in the notorious “Checkbox Assessment.”  These are security or compliance assessments that have little basis in reality and are […]

Cultural Zero-Day: How Poor Leadership Begets Security Weakness

In the ten years Anitian has been working incident response and digital forensic cases, our analysts have observed many ingenious ways to break into systems and applications.  However, they rarely encounter an ingenious root cause for the vulnerabilities.  After all the analysis and disk imaging is complete, the root cause is almost always the same: […]