Posts in Culture

Collapsology: Why Exposed RDP Isn’t Your Biggest Threat

In September 2021, I presented a conference talk entitled “Collapsology: Why Exposed RDP Isn’t Your Biggest Threat” where I gave an overview of how to identify cultural threats in a rapidly evolving business landscape, and how we can use modern-day tools to identify these threats before they result in security culture collapse.

Read more ...


Why We Should Remove Lazy From Our Vocabulary

Lazy is a word I see much too frequently. Sometimes it comes up as the key reason a web application is insecure or because an internal network is missing a backlog of patches. Sometimes it’s used to explain peoples attitudes towards security in general or their lack of acceptance of a particularly scathing report.

Read more ...


2020 In Review

Well, it was all a bit shit hey? At the start of the year I don’t recall exactly what my plans were but I can tell you right now, for most part it didn’t involve not being able to travel, or being confined to my house for 23 hours a day, but we persevered and needless to say the outcome was good.

Read more ...


Part 2: Why does Culture Hacking Matter?

Failure in this system is like a cliff in the dark, a precipice at night that we can’t see until it is too late and we are about to tumble over it. We’re afraid of it, waiting for us out there in the darkness, and all we know is that we never want to get too close in our wanderings.

Read more ...


Part 1: Culture Hacking

Hi 👋🏼 and welcome to the first part on a series on culture hacking! Your first question might be, what exactly is culture hacking, and why should I care about it?

Read more ...