Open Security News Overview

Cyber security is a vital concern for individuals, organisations, and societies at large. To address this pressing issue and to ensure a safer digital environment, we need to do a better job. For many years, we have struggled to get security right. We,security experts and software developers, have been trained and influenced by commercial vendors.…

Cyber security is complex. But effective cyber solutions do not need to be complex and very expensive. To avoid misunderstandings: Simplifying your security landscape is not simple at all, but rather means rethinking your strategy and re-prioritizing objectives. More budget and more expensive cyber technology does not help to mitigate your security risks. The best…

Cyber security is a complex field. It requires expertise of many different areas like business sciences and computer sciences. Security risks are difficult to manage and to control. Despite the costs and resources will be invested: major disasters due to security breaches are always possible. Simplification of security measurements, both tools and processes, is challenging…

Cyber security is a key quality aspect that can not be integrated later in a product. You can not create a better security architecture when your product is finished. Security is a core product quality aspect that can not be added later. Security should be seen as a foundation quality aspect that is developed in…

Security relies on understanding the present and past vulnerabilities within your hardware and software stack. Responsible software and hardware companies publish detailed information about known vulnerabilities. However, remember that the number of reported vulnerabilities for a product does never ever reflect its quality. In fact, a lack of openly published vulnerabilities should raise suspicion, as…

Security is complicated. This is why open development is a key factor and a precondition for creating secure solutions. Security is getting more important every day. Also due to the development of machine learning applications many data driven solutions are poisoned with privacy related data. Transparency and openness increase security protection levels. A good security…

We all deserve protection from abusive data practices like mass surveillance, browser tracking, demographic profiling, and data discrimination. Protecting privacy means preserving your and our digital autonomy, our freedom, and core democratic values. Technology will continue to enrich our lives and enable new possibilities for the future. There should be no tension between digital innovations…

Cyber solutions can be often simpler and far more effective. Most cyber security solutions are not future-proof and not maintainable in the long term. Most cyber security improvements programs end with more paperwork, more new fancy software tools without increased security resilience.

Good cyber security is and will be hard work. Almost every security professional uses the CVE system. But be cautious: The CVE system is broken and the database of existing CVEs is full of questionable content and plenty of downright lies. Cyber solutions can be often simpler and the best solution is rethinking if the…