There is no silver bullet in any aspect of information security. All the answers like EDR, MFA, SIEM… might get you in a better or worse security posture, it all depends to how you implement and manage but none of them are silver bullet in their area (malware protection, authentication, monitoring…). It is all about how market is pushing the community to handle the panic attack!

The only fundamental approach, still not such a silver bullet, is Least Privilege, Least Service concept which has been saved hundreds of smart companies from spending lots of money and effort to secure their assets.

Silver bullet approach will eventually end a firm cyber security team into a dead loop where there is no end to purchase, worry, fire fighting and still more insecurities and more uncertainties.

Published by Kaveh Mofidi

He starts and finishes a day for only one reason which he is so passionate about: find simple solutions for huge and complicated issues! He believes information security and computers are so fun to deal with, but the real deal is to find solution for unlimited clean energy, drinkable water, hunger, war, injustice... those are our real problems on the Earth!