Alex Haynes is an independent security researcher with a background in Ethical Hacking. He is a former pentester and Top 10 ranked researcher on Bugcrowd and is credited for discovering vulnerabilities in products by Microsoft, AWS, IBM, Adobe, Pinterest and many more. Alex is a frequent contributor to Information security publications around the world and speaks regularly at conferences on the topics of offensive security, vulnerability management and crowdsourced security. He also runs the non-profit website Scrytap.com, a security awareness content repository for other security professionals. He is currently the CISO at IBS Software.
Cloud Native Application Protection Platforms (CNAPP) are a new category of security tools that are designed to protect cloud-native applications. CNAPPs are a combination of functionality that comprise Cloud Security Posture Management (CSPM), Cloud Workload … Read more
Over the past few years, numerous well-known brands and major corporations have been targeted by cyber-attacks resulting in the exposure of millions of customers’ personal and sensitive information, making data breaches an increasingly common occurrence. … Read more
Many industry professionals bemoan the lack of qualified candidates within information security and resource scarcity is a common issue for many companies. According to latest estimates and depending which numbers you follow, there is a … Read more
Every year at the bevy of conferences that dot the Information Security landscape you can always detect an inherent theme. This may be influenced by acute threats (i.e., Ransomware), a new regulatory environment (i.e., GDPR) … Read more
During the build-up to the illegal invasion of Ukraine in February of 2022, there was consternation among information security professionals about what would happen on the cyber front. The prevailing groupthink at the time was … Read more
Third-party onboarding today isn’t easy and with the rise in supply chain attacks, the importance of auditing and ensuring your third parties won’t impact your infrastructure from a security perspective remains a burning issue. Many … Read more
The Russian invasion of the Ukraine was bound to have a part of the conflict rooted in cyberspace. The rise of crowdsourced security in the current war has taken an interesting turn.
At 2:25pm, on the 9th of December 2021, an infamous (now deleted) tweet linking a 0-day proof of concept exploit for the vulnerability that came to be known as ‘Log4Shell’ on github (also now deleted), … Read more
As we enter National Cybersecurity Awareness Month, it’s easy to forget that your personal security posture in your home environment is just as important as your enterprise environment. There’s so much focus today on enterprise … Read more
Over the past year, online gaming has been extremely popular, boosted by the many people in various parts of the world who were stuck at home during lockdown, but still keen to engage in social … Read more
