Sign up to our newsletter
Subscribe
Blog
About
Contact
Blog
About
Contact
Featured Posts
Ransoming the CISO Role
By
John Viega
Posted 6th of October, 2022
The Hackers Mural - Amsterdam April 2023
By
Mark Curphey
Posted 21st of April, 2023
A Security Tools Crash Is Coming
By
Mark Curphey
Posted 21st of November, 2022
Filter by
All
We Need Modern Product Security Certification And We Need It Now
By
Mark Curphey
Posted 6th of June, 2023
Do we need regulation to solve the ethics and integrity problem in security marketing ?
By
Mark Curphey
Posted 26th of May, 2023
Why you should not give a f*ck about security awards
By
Mark Curphey
Posted 10th of May, 2023
The Hackers Mural - Amsterdam April 2023
By
Mark Curphey
Posted 21st of April, 2023
Creating Art Not Junk - The Hack in the Box Treasure Hunt
By
Mark Curphey
Posted 17th of April, 2023
How AI might affect DevSecOps
By
Mark Curphey
Posted 5th of April, 2023
Is developer led, the best strategy for the adoption of security tools?
By
Mark Curphey
Posted 29th of March, 2023
Security Tools Can't Just Be Friction Free. Was SCA the Tipping Point?
By
Mark Curphey
Posted 20th of March, 2023
Less AppSec Assessment and Protection, More DevSecOps Observability
By
Mark Curphey
Posted 6th of March, 2023
Developers Only Pay Lip Service to Security. Get Over It.
By
Mark Curphey
Posted 2nd of March, 2023
Could sports advertising be a valid model for sustaining community open-source security software projects?
By
Mark Curphey
Posted 1st of March, 2023
Why are the same old appsec issues still a thing in 2023?
By
Mark Curphey
Posted 8th of February, 2023
We don’t need more bloody appsec tools
By
Mark Curphey
Posted 1st of February, 2023
Why DevSecOps is better than appsec and why DevSecOps tools will never be enough
By
Mark Curphey
Posted 31st of January, 2023
Why security companies and communities come and go
By
Mark Curphey
Posted 26th of January, 2023
On the left, on the right and wiggle in the middle
By
Mark Curphey
Posted 18th of January, 2023
Why supply chain security is so much more than open source code and CVE’s
By
Mark Curphey
Posted 10th of January, 2023
Right Up Our Alley
By
Mark Curphey
Posted 5th of January, 2023
In the future, can you have your appsec cake and eat it as well ?
By
Mark Curphey
Posted 4th of January, 2023
CVE / NVD doesn’t work for open source and supply chain security
By
Mark Curphey
Posted 21st of December, 2022
CVE / NVD doesn’t work for open source and supply chain security
By
Mark Curphey
Posted 30th of November, 2022
A Security Tools Crash Is Coming
By
Mark Curphey
Posted 21st of November, 2022
A Personal History of the AppSec Industry
By
John Viega
Posted 16th of November, 2022
Security Bullshit - Series 2, Episode 2
By
Mark Curphey
Posted 2nd of November, 2022
Don’t Blame the Players, Blame the Game
By
Mark Curphey
Posted 1st of November, 2022
What The Bloody Hell Is An Application ?
By
Mark Curphey
Posted 31st of October, 2022
Introducing Github Analyzer
By
Theofilos Petsios
Posted 25th of October, 2022
Dependency Pinning Only Works If You Actually Review the Updates
By
Mark Curphey
Posted 19th of October, 2022
The Crash Override Brand
By
Mark Curphey
Posted 14th of October, 2022
What I Learned About Information Security From Academia
By
Mark Curphey
Posted 11th of October, 2022
Why SCA for Security is Really Hard
By
Mark Curphey
Posted 10th of October, 2022
Security Bullshit - Series 2, Episode 1
By
Mark Curphey
Posted 7th of October, 2022
Security Bullshit - Series 1
By
Mark Curphey
Posted 7th of October, 2022
Ransoming the CISO Role
By
John Viega
Posted 6th of October, 2022
The AppSec letter bomb problem
By
Mark Curphey
Posted 4th of October, 2022
The SBOM frenzy is premature
By
Mark Curphey
Posted 3rd of October, 2022
The CSO Interviews - the biggest unsolved problems in security today
By
Mark Curphey
Posted 28th of September, 2022
1
Newsletter
Privacy Policy
© 2023 Crash Override Inc.
All rights reserved
hello@crashoverride.com