The market is in a phase where “AI” has become a marketing label rather than a technical description. Vendors stretch, exaggerate, or outright misrepresent what their products actually do, and the industry is quietly normalizing it. I’ve personally seen platforms confidently branded as “AI‑driven” when, under the hood, they are nothing more than deterministic playbooks,… Continue reading AI‑Washing in Cybersecurity
Category: Security Management
The Confusion Between Scanning and Testing
The Illusion of Coverage Many still confuse vulnerability scanning with penetration testing.They sound similar. They are not. One is automated noise.The other is a human discipline. A scan gives you a list.A pentest gives you a story. Lists are comfortable. They feel complete.Stories are uncomfortable. They expose what actually breaks. Most organizations choose comfort. Getting… Continue reading The Confusion Between Scanning and Testing
AI vs ML and why it is important in cybersecurity
we love buzzwords in cybersecurity. every few months the industry discovers a new shiny acronym, slaps it on the same old product, and suddenly we’re all supposed to believe the world has changed. now the magic word is “AI.” everything is “AI-powered,” “AI-enhanced,” “AI-driven.” but when you look under the hood, most of these so‑called… Continue reading AI vs ML and why it is important in cybersecurity
AI boundaries: you still need to learn how to think
recently I heard someone confidently say: “you don’t need to learn how to code anymore. nobody needs to. AI will do it for you.” this is exactly the kind of thinking that keeps pushing us further away from understanding the root of anything. if we follow that logic, then we also don’t need to teach… Continue reading AI boundaries: you still need to learn how to think
You Cannot Audit Your Own Shadow
The illusion of independence In 2025, the industry still repeats the same mistake: letting the same hands build the system and then “validate” it. That is not validation. That is self‑comfort. A consultant who deploys your environment cannot be the one who tests it. A builder cannot be the judge of their own shortcuts. A… Continue reading You Cannot Audit Your Own Shadow
What is research and why is it crucial for elevating your knowledge in computer security?
Doing research in computer security since 1989 has kind of put me in a situation where I could organically learn what research really is and what I expect from it. To start with, perhaps it’s easier to say what is “not” considered research. These days, when people talk about research, they’re simply referring to Googling… Continue reading What is research and why is it crucial for elevating your knowledge in computer security?
What is your background in Computer Security?
Can you be a cybersecurity professional just because you are passionate about it or overnight got a certificate? Real quick answer: NO, not at all! That is actually one of the main reasons behind hackers being always ahead of the security community. I hear people in this industry, well, I should say in this commercial… Continue reading What is your background in Computer Security?
Why Are We Struggling With Cybersecurity?
Why are we struggling with cybersecurity? Why does it feel like hammering water when it comes to securing your assets in the cyber world? It’s a different story if you don’t believe that the majority of the industry is wasting time, thinking they are doing the right things to secure their network. Then how come… Continue reading Why Are We Struggling With Cybersecurity?
How to choose a vendor in context of infosec goods and services
a new label doesn’t create a new capability.” know what you actually need most people start with vendors before they start with themselves. that is the first mistake. if you don’t know what problem you are solving, every vendor suddenly looks “perfect”. it’s like walking into a hardware store without knowing if you need a… Continue reading How to choose a vendor in context of infosec goods and services
I am not the technical person but I must sell you something I have no clue about!
well, I actually changed the second part sarcastically, this is the original version: I am not the technical person but I really must sell you something today, can I connect you to another person in my company, an engineer perhaps? you know, we have a very great product but I am just lacking understanding what… Continue reading I am not the technical person but I must sell you something I have no clue about!