John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
I haven't yet decided exactly what kind of content I intend to post here. I love cooking and taking pictures so initially I'll probably just share recipes, photos and that kind of thing.
If I really start using the space I may expand on the blog capabilities. For now I'm keeping it quite simple.
Trivy Incident Reality Check: Your Security Tool Can Become Your Attack Path
The Trivy incident is a blunt reminder that CI security tools need the same zero-trust controls as production systems.
Read More
Security Funding Is Getting Specific, and That Is the Signal
Capital is clustering around persistent pain points like cellular risk, device trust, and brand abuse, which is useful planning intelligence.
Read More
Hidden Admin Surfaces Are Still the Fastest Way In
Fresh KVM and telnetd exposure reporting shows old management interfaces remain high-impact attack shortcuts.
Read More
Cyber Enforcement Is Moving Upstream, and Defenders Should Pay Attention
Recent actions show growing pressure on facilitators and infrastructure, not just frontline operators, which creates real defensive opportunities.
Read More
Botnet Takedown at Massive Scale: Good News, Short Window
New scale confirmation makes this takedown meaningful, but defenders only win if they use the brief recovery window to harden fast.
Read More
AI Export Controls Are Now a SOC Problem, Not Just a Legal Memo
New enforcement activity pushes export-control risk into day-to-day security operations, especially around access, logging, and partner workflows.
Read More