Crash Override

Security Marketing Exposed - Part One

Why understanding marketing is a super power for running operational security programs
By Mark Curphey
January 8, 2025

Whack-a-mole is dead

Welcome to the post alerts and issues era, and why security insecticides are a better approach.
By Mark Curphey
November 6, 2024

On Social Media Witch Hunts and Learning Important Lessons

As Jen Easterly from CISA said, ‘this (CRWD saga) is a dress rehearsal for what China could do in the future’ and if we don’t learn the actual lessons here we are doomed to repeat history.
By Mark Curphey
September 10, 2024

C isn’t a Hangover; Rust isn’t a Hangover Cure

It seems there are too many people in the security industry that are too fast to condemn C/C++
By John Viega
April 23, 2024

Is Shadow Development Really A Problem?

A look at how the BYOD problem was solved and how we can use that approach to solve the shadow development problem
By Mark Curphey
April 10, 2024

Are there too many bubbles of similar security efforts?

Why we shouldn't work together for the greater good of the security industry
By Mark Curphey
March 26, 2024

Welcome ZAP to the Open Source Fellowship

The Crash Override Open Source Fellowship is a program to help sustain and grow important open source security projects.
By Mark Curphey
March 14, 2024

The Crash Override Open Source Fellowship

The Crash Override Open Source Fellowship is a program to help sustain and grow important open source security projects.
By Mark Curphey
March 13, 2024

SBOMs for Production Incident Response Maybe a Killer Trojan Use Case for Security

SBOMs are more valuable for platform engineers than they are to security engineers today, and why this will help security in the long run.
By Mark Curphey
November 14, 2023

Best-of-Breed and Industry Standard is Misleading

Best of Breed and Industry Standard is Misleading
By Mark Curphey
November 14, 2023

The Power of Small, Fast, Grit and Cross-Functional Relationships

The traits of high performing security teams
By Mark Curphey
November 13, 2023

Build System or Bust and Wrapping Security Tools Using Docker

Build System or Bust and Wrapping Security Tools Using Docker
By Mark Curphey
November 13, 2023