The Latest
Guest Blog: “Complementary Security for Orange’s Data & AI Ethics Council”
A new HardenStance blog on Light Reading proposing an approach to collaborating on AI security standards that can complement Orange’s new Data & AI Ethics Council. View the blog
Guest Blog: “The Four ‘P’s of 5G Network Visibility”
My guest blog for Palo Alto Networks, setting out the “Four ‘P’s of 5G Network Visibility”: visibility into protocols, perimeters, permissions and partners.” View the blog
Briefing: A New Strategy for Telekom Security
Telekom Security is focusing on the Central European markets of Germany, Austria and Switzerland. M&A activity may even prioritize the U.S. before the big European markets like France and the UK.View the Briefing
White Paper: Learnings from Real World Telco Security Incidents
Looking into some recent real world telco security incidents highlights just how unhelpful a myopic focus on APTs, Chinese vendor software and 3GPP features can be to telco security.
Briefing: A Way to Turn the Tide on Fake News
Facebook, YouTube and Twitter aren't going to reduce the risk posed by Fake News down to the minimal level needed on their own. It's time they collaborated to get this done - here's how.
Briefing: New Standards for Securing AI
ETSI is doing some excellent work to fill a glaring gap in cyber security standards - how you secure AI algorithms.
White Paper: 5G SA Networks Trigger a New Era in 5G Security
With the launch of the first 5G Stand Alone (5G SA) networks, mobile network security will never be the same again - here's why and what to do about it.
Briefing: An ATT&CK-Like Framework for Telcos
Will operators step up and support two enterprising individuals from Ericsson and Nokia in defining an ATT&CK-like Framework for the telecom sector?
Briefing: Deploying STIR/SHAKEN as a Service
All but the largest telecom operators should be looking at deploying the STIR/SHAKEN standard for blocking unwanted calls as a service, managed by a vendor partner, rather than building out their own infrastructure.
White Paper: What to Expect from MDR and MDR Providers
Managed Detection and Response (MDR) is a critical cybersecurity service category. Sponsored by AT&T, Secureworks, Fortinet and ElevenPaths, this White Paper guides users on what to expect both from their provider and themselves in an MDR partnership.
Briefing: MITRE’s ATT&CK Evals Are Out: Cheers!
The new MITRE ATT&CK Evaluations offer free access to high quality, comparative data on EDR product detection capabilities against APTs on an unprecedented scale. Those that need to - and know how to - can make good use of this data.
Briefing: New STIX & TAXII Releases Approved
The new open standard STIX and TAXII 2.1 releases have been approved by OASIS. A new self-certification program should help drive adoption and enable SOC teams to arrive at faster time to detection and time to mitigation.
