Rafal Los

Sign in

Background

If you listen to my new podcast with my friend Chris Abramson, “Indistinguishable from Magic” we’re about to release a conversation on this (or already have by…


Ransomware has been top of mind a lot lately. For many cybersecurity professionals working in corporate enterprise, the fear of dealing with ransomware is ever-present. The past 2 to 3 months have been especially brutal as the conversation has swung to making it illegal to pay a ransom.

There are…


I was reading Bruce’s article again “On Not Fixing Old Vulnerabilities” where he ponders the unbelievable result of a report on very, very old vulnerabilities still in real-world existence today, and came upon a disturbing thought.

As I scrolled through the comments section (yes, I read comments as often as…


We’re a third of the way through 2021. I’ll pause and let that hit you and sink in before I continue…

Now that you’ve had a minute to think about the statement I made above, I’d like to draw your attention to a LinkedIn post I made a while back…


I was reading up on Microsoft Security (you should really bookmark and read this stuff if you work with Microsoft — https://docs.microsoft.com/en-us/security/) recently. You should probably do it too. Interesting stuff in there.

One bit stuck out for me — emergency accounts — casually mentioned in the Security Rapid Modernization…


Solving Security Problems With Money

Have you ever read something that is meant to be funny, kitschy, but ultimately ends up being ridiculous?

Check this LinkedIn post out: https://www.linkedin.com/posts/the-cyber-security-hub_via-hypr-the-passwordless-company-activity-6743110611120480256-SI2H

I read that and chuckled to myself. Then I read the replies…

“This is why we’re in such shit shape” —…


I was interviewed for a news story that ran on Friday night, on WSB Atlanta, about Child Protective Services (CPS) and how they’ve had a business email compromise.

The insane thing, for me, is that the big headline isn’t that this is yet another example of how simple it is…


I’ve had an employee once, as they were telling me they were leaving the company and my team in favor of a new job, sheepishly ask if I was mad at them or angry. I was confused by this notion… let’s explore this.

I’ve not worked in that many different…


Security tools and service providers, specifically MSSPs have failed customers in spectacular ways over the last 20 years. One of the most obvious, that I can’t believe we collectively haven’t figured out how to address adequately yet, or at least not en masse, is the reporting of bad things.

On…


We’re all dealing with an economic and social catastrophe the likes of which we have not witnessed in many generations, hell, maybe ever. The events over the last several months can give one pause about how to proceed forward with so much that is uncertain. …

Rafal Los

I’m Rafal, and I’m a 20+ year veteran of the Cyber Security and technology space. I tend to think with a wide-angle lens, and am unapologetically no-bullsh*t.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store