Author: Alex Haynes

Alex Haynes is an independent security researcher with a background in Ethical Hacking. He is a former pentester and Top 10 ranked researcher on Bugcrowd and is credited for discovering vulnerabilities in products by Microsoft, AWS, IBM, Adobe, Pinterest and many more. Alex is a frequent contributor to Information security publications around the world and speaks regularly at conferences on the topics of offensive security, vulnerability management and crowdsourced security. He also runs the non-profit website Scrytap.com, a security awareness content repository for other security professionals. He is currently the CISO at IBS Software.

From the Spring 2022 Issue

Cybersecurity Risk Management

Getting Offensive With Your Third Parties

Author(s):

Alex Haynes, CISO , IBS Software

Third-party onboarding today isn’t easy and with the rise in supply chain attacks, the importance of auditing and ensuring your third parties won’t impact your infrastructure from a security perspective remains a burning issue. Many companies still maintain a tick box approach when onboarding or managing third parties and mainly consist of sending out questionnaires … Read more

Crowdsourced Security is out of Control in the Ukraine Conflict

Author(s):

Alex Haynes, CISO , IBS Software

The Russian invasion of the Ukraine was bound to have a part of the conflict rooted in cyberspace. The rise of crowdsourced security in the current war has taken an interesting turn.

From the Winter 2022 Issue

Reducing Risk

Releasing 0-Days Through Public Disclosure Only Helps Attackers

Author(s):

Alex Haynes, CISO , IBS Software

At 2:25pm, on the 9th of December 2021, an infamous (now deleted) tweet linking a 0-day proof of concept exploit for the vulnerability that came to be known as ‘Log4Shell’ on github (also now deleted), set the internet on fire and kicked off a holiday season of companies scrambling to mitigate, patch and then patch … Read more

From the Fall 2021 Issue

Cybersecurity & The Modern World

What Should Your Home Cybersecurity Set Up Look Like?

Author(s):

Alex Haynes, CISO , IBS Software

What Should Your Home Cybersecurity Setup Look Like_

As we enter National Cybersecurity Awareness Month, it’s easy to forget that your personal security posture in your home environment is just as important as your enterprise environment. There’s so much focus today on enterprise security that it’s easy to overlook something that can have as much impact on your day to day as in … Read more

From the Summer 2021 Issue

Cybersecurity & The Modern World

Cybersecurity in Virtual Worlds – Are the Problems the Same? The Identity Paradigm in Online Games

Author(s):

Alex Haynes, CISO , IBS Software

Over the past year, online gaming has been extremely popular, boosted by the many people in various parts of the world who were stuck at home during lockdown, but still keen to engage in social contact. These social interactions based in virtual worlds resemble our own and the research presented below is based on the … Read more

Endpoint Security – Cutting Through the Complexity With Clear-Cut Requirements

Author(s):

Alex Haynes, CISO , IBS Software

Endpoint security has evolved drastically over the past 10 years. While previously it only referred to ‘anti-virus’ and typically only on workstations, endpoint security has been replaced by a bewildering array of options that can do dozens of things. With the increase in options, we naturally get an increase in complexity, and combine this with … Read more

DLP Technology – Why Does it Fail?

Author(s):

Alex Haynes, CISO , IBS Software

Long ago, before GDPR, there was a class of technology called DLP that claimed to solve all your data leakage and data protection issues. An acronym that stands for “data loss prevention” (it can also be referred to as “data leakage protection” or “data loss protection,” depending on who you are talking to) was supposed … Read more

From the Spring 2021 Issue

Industry & Business Best Practices

How Much is Too Much When Paying Out a Reward for a Vulnerability?

Author(s):

Alex Haynes, CISO , IBS Software

how-much-is-too-much-when-paying-out-a-reward-for-a-vulnerability

There has been a lot of publicity surrounding ‘bug bounty’ programs that pay out seemingly large rewards for finding vulnerabilities in web applications. This trend has increased over the years as crowdsourced security programs have matured since their inception almost 10 years ago and their adoption has become mainstream. Should we pay out large sums … Read more

Credentials: Check and Protect

Author(s):

Alex Haynes, CISO , IBS Software

Today, breaches continue unabated at the same alarming rate to which we have grown accustomed. More than 36 billion records were exposed in 2020 alone and that’s only counting those we know about. The real figure will rise far higher. The rate of these data leaks is so frequent that it is hard to track … Read more

From the Winter 2021 Issue

Pen Testing

Automated Pentesting – Can it Replace Humans?

Author(s):

Alex Haynes, CISO , IBS Software

In the past few years, cybersecurity automation in many spheres of Cybersecurity increased dramatically. However, pentesting remains stubbornly immune to this. While crowdsourced security has evolved as an alternative to pentesting in the past 10 years, it’s not based on automation. Rather, the alternative simply throws more humans at a problem and in the process, … Read more

Sun	Mon	Tue	Wed	Thu	Fri	Sat
« March 2025 »
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.