Senki - Security & Resiliency as we scale the Internet

Senki - Security & Resiliency as we scale the Internet Senki is dedicated to Scaling this thing we call the "Internet." You'll find materials on security,

Senki is a tool to empower people so they, in turn, can scale the Internet. The focus is to keep the world of everything and everyone interconnected growing, scaling, and being secure. The materials shared concentrate on helping others learn, embrace, and act.

"Cybercrime is a borderless, multi-billion-dollar enterprise. We cannot defend against it solely by building taller wall...
05/18/2026

"Cybercrime is a borderless, multi-billion-dollar enterprise. We cannot defend against it solely by building taller walls around individual networks. Operation Ramz proves that actionable intelligence, combined with trusted public-private partnerships, results in actual arrests & dismantlement.

CEOs, learn how you can invest in cybercrime disruption through non-profit engines that have two decades of measurable impact.

Peter Neumann said, “Security is a set of end-to-end total-system emergent properties,” and “Strength in Depth is desira...
05/18/2026

Peter Neumann said, “Security is a set of end-to-end total-system emergent properties,” and “Strength in Depth is desirable, but we have Weakness in Depth.” He quotes Einstein — “Everything should be made as simple as possible, but no simpler” — and warns that oversimplifying security leads to flaws

Discover Peter Neumann's cybersecurity and his lasting influence on digital safety practices, & apply to the AI Vulnpocalypse

Someone was asking me about the evolution of the Protective DNS. So pulled all my notes into Claude and started collecti...
05/06/2026

Someone was asking me about the evolution of the Protective DNS. So pulled all my notes into Claude and started collecting the history (from my point of view). There is a lot more to write. Many more peers who contribute in this collective effort. I just wish more organizations deployed.

The Architectural Evolution of Protective DNS: From Academic Prototyping to Global Security Standard The historical trajectory of the Domain Name System (DNS) has transitioned from a rudimentary directory service into the fundamental control plane of modern internet security. This transformation was...

All this talk about "Mythos" and "Vulnpocalypse" can put you at risk - distracted by the hype-cycle. Basic "meaningful c...
04/19/2026

All this talk about "Mythos" and "Vulnpocalypse" can put you at risk - distracted by the hype-cycle. Basic "meaningful cybersecurity conversations" are more important today .... just add the questions on AI.

Learn how Meaningful Conversations transform vendor assessments beyond compliance checklists for better cyber defense.

One of my cybersecurity peers asked me "which of the multitude of Shadowserver reports have the CVEs listed." I used tha...
04/07/2026

One of my cybersecurity peers asked me "which of the multitude of Shadowserver reports have the CVEs listed." I used that question as a way to help them see how they can use LLMs as a learning tool. Check it out.

Learn how Shadowserver reports include CVEs and explore the benefits of these critical security insights.

Many were surprised at the level of collaboration in last week's Kimwolf/Aisuru disruption. This level of operational tr...
03/23/2026

Many were surprised at the level of collaboration in last week's Kimwolf/Aisuru disruption. This level of operational trust takes time to build. How do you build operation trust in the cybersecurity community? Here are some recommendations to start your team's journey. It is worth the investment - especially when your organization is experiencing a cyber incident.

Learn the secrets of effective collaboration among organizations combating threat actors and enhancing operational trust.

03/23/2026

Many were surprised at the level of collaboration in last week's Kimwolf/Aisuru disruption. This level of operational trust takes time to build. How do you build operation trust in the cybersecurity community? Here are some recommendations to start your team's journey. It is worth the investment - especially when your organization is experiencing a cyber incident.

BEC’s Payroll Diversion Fraud Investigation Report: Operational Modalities, Threat Actor Investigation, and Defensive Ar...
01/10/2026

BEC’s Payroll Diversion Fraud Investigation Report: Operational Modalities, Threat Actor Investigation, and Defensive Architectures

1. Executive Summary The global financial cybercrime landscape has undergone a paradigmatic shift, evolving from indiscriminate, high-volume phishing campaigns to highly targeted, psychologically manipulative operations that exploit the structural seams of corporate finance. Among these threats, Payroll Diversion Fraud—the unauthorized redirection of employee salary disbursements to fraudulent accounts—has metastasized into a premier vector for both organized criminal syndicates and state-sponsored actors seeking to evade international sanctions....

Payroll Diversion Fraud is a type of Business Email Compromise (BEC) that has resulted in huge losses in the Indo-Pacific region.

The DNS Cache Poison vulnerability (CVE-2025-40778) opens a huge exploitation range from INSIDE the network. This is NOT...
11/11/2025

The DNS Cache Poison vulnerability (CVE-2025-40778) opens a huge exploitation range from INSIDE the network. This is NOT a "Kaminsky" attack - it is much worse - two crafted packets from an architected attack....

The DNS Cache Poison vulnerability (CVE-2025-40778) opens a huge exploitation range from INSIDE the network. This is NOT a "Kaminsky" attack - it is much worse - two crafted packets from an architected attack.

On December 3rd, 2024, six cybersecurity organizations published Enhanced Visibility and Hardening Guidance for Communic...
12/22/2024

On December 3rd, 2024, six cybersecurity organizations published Enhanced Visibility and Hardening Guidance for Communications Infrastructure, detailing simple paths threat actors use to pe*****te networks. Most people I talk to say, “This is nothing new.” “We’ve heard it all before.” “These are all Best Common Practices (BCPs); everyone should have deployed them already!” Do not ignore these recommendations. Threat actors use simple techniques and active vulnerabilities to get inside your organization!...

On December 3rd, 2024, six cybersecurity organizations published Enhanced Visibility and Hardening Guidance for Communications Infrastructure, detailing simple paths threat actors use to pe*****te networks. Most people I talk to say, “This is nothing new.” “We’ve heard it all before.” “T...

Address

Cupertino, CA
95014

Website

Alerts

Be the first to know and let us send you an email when Senki - Security & Resiliency as we scale the Internet posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category