Doing things right is not always enough
Alexandre BLANC Cyber Security
Advisor - ISO/IEC 27001 and 27701 Lead Implementer - Named security expert to follow on LinkedIn in 2024 - MCNA - MITRE ATT&CK - LinkedIn Top Voice 2020 in Technology - All my content is sponsored
All we can do is do our best, when we do things right, sometimes it's not enough, because we don't control everything.
Can we plan for the worst ? Can we try to anticipate situations and have plans ? Yes, that's about reducing the risks, and likelihood of incident.
When we do so, we work both on the preventive and the corrective side, because we know, preventing is only risk reduction.
To reduce the risk in software development, you can use Anomaly detection :
You can try to patch these Zero days, or try to compensate when there is not patch available : Palo Alto newtork PAN-OS zero day unpatched CVS 10
Sometimes we can't do anything when the game is rigged and the authentication of your so trusted cloud is granting access to attackers : Why CISA is Warning CISOs About a Breach at Sisense
Quoting Brian's update in the article : "Also, Sisense’s CISO Dash just sent an update to customers directly. The latest advice from the company is far more detailed, and involves resetting a potentially large number of access tokens across multiple technologies, including Microsoft Active Directory credentials, GIT credentials, web access tokens, and any single sign-on (SSO) secrets or tokens."
I'll stop here, and let you find what you have to find, and take action where you have to take action.
Good luck for the weekend cloud lovers and SSO fans ! I always said, SSO is cute, but it's also a universal access to all when corrupted.
Planning for the worst and anticipating potential challenges can indeed help mitigate risks and improve our readiness to handle adverse situations.
Entrepreneurial Leader & Cybersecurity Strategist
5 个月This proactive approach involves both preventive measures, such as anomaly detection in software development, and corrective actions, such as patching zero-day vulnerabilities or responding to breaches.
Advisor-Business Driven Security-SABSA-The Agile Security System (TASS)
5 个月Thanks ...and true, reason why you should focus your activities and behavior on the things you control, yes the things you can readily start and stop at anytime,, and allow your behavior and activities to influence the things you can't control and when we do we will be doing our best and will be enough. We need to refocus, we are chasing too many things we can control.
★ I create value by turning complex info into actionable insights using technology & Maths. MBA, Global E-Commerce Champion
5 个月I love how elegantly you deliver this important message about expectation management! My added mantra is to focus more on resilience, less on trying achieve absolute cyber-security. No one knows at any point in time what tech is already in crime arsenals, so no one knows what is "secure".
Beta-tester at Parrot Security* Polymath*
6 个月TY Alexandre BLANC Cyber Security