No Silver Bullet in Computer Security

No Silver Bullet in Computer Security

There is no silver bullet in any aspect of information security. All the answers like EDR, MFA, SIEM… might get you in a better or worse security posture, it all depends to how you implement and manage but none of them are silver bullet in their area (malware protection, authentication, monitoring…). It is all about how market is pushing the community to handle the panic attack!

The only fundamental approach, still not such a silver bullet, is Least Privilege, Least Service concept which has been saved hundreds of smart companies from spending lots of money and effort to secure their assets.

Silver bullet approach will eventually end a firm cyber security team into a dead loop where there is no end to purchase, worry, fire fighting and still more insecurities and more uncertainties.

By Kaveh Mofidi

I find simple solutions for huge and complicated problems. I believe information security and computers in general are fun to deal with, but our problems are way bigger than securing information. The real deal is to find solution for unlimited clean energy, drinkable water, mitigate root cause of hunger, war, and injustice...We need to keep our planet livable, that is our real problem on the Earth! Contact me with any question or comment: