CIS’s Coordinated Vulnerability Disclosure paper is a load of bull

I’m breaking two of my own rules for this post: I’m getting a wee bit personal and expressing outrage. For talk is cheap and outrage comes wholesale over the net.

The Centre for Internet & Society has just released the policy brief, “Leveraging the Coordinated Vulnerability Disclosure Process to Improve the State of Information Security in India.”

Continue reading “CIS’s Coordinated Vulnerability Disclosure paper is a load of bull”

The most radical event on cyber-enabled information warfare, ever

So, the think tank SOFWERX is backed by the US Special Operations Command. It organised, what could possibly be, the best event on cyber-enabled information warfare, influence operations and disinformation, ever — Radical Speaker Series: Countering Weaponized Information. It’s amazing that tacticians of the USSOCOM are thinking at that level!

I documented most of the conference videos in a Twitter thread, which is pasted below as a single article.👇 Also, here’s the Thread Reader link of the same coalesced thread.

Continue reading “The most radical event on cyber-enabled information warfare, ever”

Why I should not be talking about an Indian cyber mercenary

Even ten years ago, as we bootstrapped cyber operations in the government, a subtle tension always brewed when it came to contractors.

I belonged to an archaic school of thought believing that such capabilities need to be internally fostered. As Dave Aitel rightly says: you build competencies [over generations] rather than tools. Continue reading “Why I should not be talking about an Indian cyber mercenary”