Please enjoy this encore of Word Notes.

A cybersecurity first principle strategy focused on disrupting known adversary activity at one of several phases of an attack sequence.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/intrusion-kill-chain⁠

Audio reference link: "⁠Cybersecurity Days: A Network Defender's Future⁠," by Rick Howard, Integrated Cyber Conference, Integrated Adaptive Cyber Defense (IACD), YouTube, 26 October 2018.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A subset of security orchestration, the management of identities across an organization's set of digital islands. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/identity-orchestration

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A cyber threat intelligence analysis model that defines relationship pairs between four core components in the shape of a diamond of adversary playbook activity across the intrusion kill chain: the adversary, their capability, the infrastructure used or attacked, and the victim.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/diamond-model ⁠

Audio reference link: “⁠Diamond Presentation v2 0: Diamond Model for Intrusion Analysis – Applied to Star Wars’ Battles⁠,” Andy Pendergrast and Wade Baker, ThreatConnect, YouTube, 4 February 2020.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A knowledge base of adversary tactics, techniques, and procedures established and maintained by the MITRE Corporation. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/mitre-attck⁠

Audio reference link: “⁠Attack Frameworks - SY0-601 CompTIA Security+ : 4.2⁠,” Professor Messer, YouTube, 29 April 2021.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

The set of people, process, technology, and cultural norms that integrates software development and IT operations into a system-of-systems.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/devops⁠

Audio reference link: "⁠10+ Deploys Per Day: Dev and Ops Cooperation at Flickr⁠," by John Allspaw and Paul Hammond, Velocity 09, 25 July 2009.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A software development model that relies on a series of sequential steps that flow into each other, like a series of waterfalls. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/waterfall-software-development⁠

Audio reference link: “⁠Creating Video Games - Agile Software Development,⁠” by Sara Verrilli, MIT OpenCourseWare, YouTube, 10 December 2015

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A software development philosophy that emphasizes incremental delivery, team collaboration, continual planning, and continual learning 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/agile-software-development⁠

Audio reference link: "⁠Velocity 09: John Allspaw and Paul Hammond, "10+ Deploys Pe,⁠" John Allspaw and Paul Hammond, 2009 Velocity Conference, YouTube, 25 June 2009.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

The flagship product of the controversial Israeli spyware vendor, the NSO Group, use for remotely hacking mobile devices, most notably iPhones, via zero-click exploits.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/pegasus⁠

Audio reference link:⁠“Cybersecurity beyond the Headlines: A Conversation with Journalist Nicole Perlroth⁠,” Kristen Eichensehr, and Nicole Perlroth, University of Virginia School of Law, YouTube, 14 February 2022

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

An open source email authentication protocol designed to prevent emails, spoofing in phishing, business email compromise or BEC, and other email-based attacks. 

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/pegasus⁠

Audio reference link:"⁠Global Cyber Alliance's Phil Reitinger talks DMARC adoption⁠" “Global Cyber Alliance’s Phil Reitinger Talks DMARC Adoption.” YouTube Video. YouTube, April 27, 2018

Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Word Notes.

A condition announced by the US Cybersecurity and Infrastructure Security Agency (CISA) to draw attention to a temporary period of high alert, associated with expectation of a connected wave of cyberattacks prompted by either a widespread vulnerability or an unusually active and capable threat actor.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/shields-up⁠

Audio reference link: “⁠Star Trek II Wrath of Khan - Reliant vs Enterprise; First Clash⁠” YouTube, YouTube, 11 Apr. 2015,  

Learn more about your ad choices. Visit megaphone.fm/adchoices