Meet the New RL Partner Program
Let’s band together for the love of security
John P. Mello Jr.
Freelance technology writer. John's work has appeared in the The Boston Globe and Boston Herald, as well as CFO, CIO, CSO, and Inc. magazines. He is a former managing editor of the Boston Business Journal and Boston Phoenix, as well as a staff writer for Government Security News.
Posts from John P. Mello Jr.
Meet the New RL Partner Program
Zoom joins the vulnerability fray: Will VISS move the needle on AppSec?
Here's what you need to know about Zoom's Vulnerability Impact Scoring System, how it compares to EPSS — and how it can advance your application security.
Key reasons third-party cyber risk management programs fail
Here's why organizations are struggling with TPCRM — and how to develop an effective program.
The JetBrains TeamCity software supply chain attack: Lessons learned
The TeamCity incident is similar to SunBurst, which was behind the attack on SolarWinds. But there are differences. Here are tips to help secure your software pipeline.
The Hugging Face API token breach: 5 lessons learned
More than 1,500 tokens were exposed, leaving millions of AI models and datasets vulnerable. Here's what your security team can learn from the compromise.
Secure AI development guidance: What software teams need to know
U.K. and U.S. cyber-watchdogs say to start with Secure by Design — but don't stop there. Here are key takeaways from their new guidelines.
6 ways AI helps SecOps punch back
While AI is mostly seen as opening a new front in the threat landscape, it will also be tapped to fight back with advanced threat hunting and more.
Don't let CVEs distract you: Shift your AppSec team's focus to malware
Rather than wasting cycles on non-exploitable or remediated security holes, teams should focus on exploitability, and look for compromises including malware and tampering. Here's why.
Zero trust and threat modeling: Is it time for AppSec to get on board?
Zero trust can benefit threat modeling, so why not extend it to your AppSec? Understand the key benefits and challenges.