📝Review Incoming...

This week, we dive into GRC. Andrew Chrostowski provides a Hall of Fame Rec for 𝙏𝙝𝙚 𝘾𝙮𝙗𝙚𝙧𝙨𝙚𝙘𝙪𝙧𝙞𝙩𝙮 𝙂𝙪𝙞𝙙𝙚 𝙩𝙤 𝙂𝙤𝙫𝙚𝙧𝙣𝙖𝙣𝙘𝙚, 𝙍𝙞𝙨𝙠, 𝙖𝙣𝙙 𝘾𝙤𝙢𝙥𝙡𝙞𝙖𝙣𝙘𝙚 by Jason Edwards and Griffin Weaver.

Andrew's review 👉 https://cybercanon.org/the-cybersecurity-guide-to-governance-risk-and-compliance/

#CybersecurityBooks #GRC #CyberCanonHoFCandidate

🕵️‍♂️𝗙𝗿𝗲𝘀𝗵 𝗥𝗲𝘃𝗶𝗲𝘄 𝗗𝗿𝗼𝗽!

This week, Jeff Schiemann provides a Hall of Fame recommendation of 𝙏𝙝𝙚 𝙇𝙖𝙯𝙖𝙧𝙪𝙨 𝙃𝙚𝙞𝙨𝙩, written by the accomplished investigative journalist, Geoff White.

You don't want to miss this one: https://cybercanon.org/the-lazarus-heist-from-hollywood-to-high-finance-inside-north-koreas-global-cyber-war/

🙏 Consider supporting the Canon by purchasing the book through our Affiliate link here: https://amzn.to/48dAaSo

#CybersecurityBooks #CyberWar #CyberCanonHoFCandidate

@BBCNews

At our November Committee Review Meeting, members Dr. Georgianna (George) Shea and Adrian Sanabria each led in-depth discussions of Hall of Fame candidate books.

These reads are quite different from each other: critical infrastructure and building a cyber startup. The reviews were published in 2024, but some readers might have missed them, so it's a good idea to check them out:

🏭 George discussed 𝘾𝙤𝙪𝙣𝙩𝙚𝙧𝙞𝙣𝙜 𝘾𝙮𝙗𝙚𝙧 𝙎𝙖𝙗𝙤𝙩𝙖𝙜𝙚: 𝙄𝙣𝙩𝙧𝙤𝙙𝙪𝙘𝙞𝙣𝙜 𝘾𝙤𝙣𝙨𝙚𝙦𝙪𝙚𝙣𝙘𝙚-𝘿𝙧𝙞𝙫𝙚𝙣, 𝘾𝙮𝙗𝙚𝙧-𝙄𝙣𝙛𝙤𝙧𝙢𝙚𝙙 𝙀𝙣𝙜𝙞𝙣𝙚𝙚𝙧𝙞𝙣𝙜 (𝘾𝘾𝙀) by Andrew Bochman and Sarah Freeman 👉 https://cybercanon.org/countering-cyber-sabotage-introducing-consequence-driven-cyber-informed-engineering-cce/

🏗️ Adrian shared Ross Haleliuk's 𝘾𝙮𝙗𝙚𝙧 𝙛𝙤𝙧 𝘽𝙪𝙞𝙡𝙙𝙚𝙧𝙨: 𝙏𝙝𝙚 𝙀𝙨𝙨𝙚𝙣𝙩𝙞𝙖𝙡 𝙂𝙪𝙞𝙙𝙚 𝙩𝙤 𝘽𝙪𝙞𝙡𝙙𝙞𝙣𝙜 𝙖 𝘾𝙮𝙗𝙚𝙧𝙨𝙚𝙘𝙪𝙧𝙞𝙩𝙮 𝙎𝙩𝙖𝙧𝙩𝙪𝙥 👉 https://cybercanon.org/cyber-for-builders/

The discussions around these books were great timing, as the other main topic of the meeting was preparing for the upcoming annual hall of fame🏛️voting session. Our favorite time of year, so stay tuned!

#CybersecurityBooks #CyberCanonHoFCandidate
CRC Press | Venture in Security
@sawaba

🔏𝗡𝗲𝘄 𝗥𝗲𝘃𝗶𝗲𝘄 𝗗𝗿𝗼𝗽 📖

This week, Jeny Teheran discusses why Dr. Susan Landau’s 𝙇𝙞𝙨𝙩𝙚𝙣𝙞𝙣𝙜 𝙄𝙣 is a must-read exploration of privacy, encryption, and the ongoing struggle over government access to secure systems. Being clear, timely, and essential, she recommends it for the CyberCanon Hall of Fame.

📝Review: https://cybercanon.org/listening-in-cybersecurity-in-an-insecure-age/

🛍️To purchase and give 4% back to the Canon, please consider using our affiliate link: https://amzn.to/4oDAWxQ

#CybersecurityBooks #DataPrivacy #Encryption #CyberCanonHoFCandidate Yale University Press

🚨𝗗𝗲𝗰𝗿𝘆𝗽𝘁𝗶𝗻𝗴 𝗮 𝗻𝗲𝘄 𝗿𝗲𝗮𝗱...

“𝘈𝘶𝘮𝘢𝘴𝘴𝘰𝘯, 𝘢 𝘴𝘦𝘢𝘴𝘰𝘯𝘦𝘥 𝘤𝘳𝘺𝘱𝘵𝘰𝘨𝘳𝘢𝘱𝘩𝘦𝘳 𝘢𝘯𝘥 𝘢𝘶𝘵𝘩𝘰𝘳, 𝘩𝘢𝘴 𝘣𝘭𝘢𝘻𝘦𝘥 𝘵𝘩𝘦 𝘵𝘳𝘢𝘪𝘭 𝘣𝘺 𝘸𝘳𝘪𝘵𝘪𝘯𝘨 𝘢 𝘥𝘪𝘤𝘵𝘪𝘰𝘯𝘢𝘳𝘺 𝘰𝘧 𝘤𝘳𝘺𝘱𝘵𝘰𝘨𝘳𝘢𝘱𝘩𝘺.(..) 𝘈𝘭𝘵𝘩𝘰𝘶𝘨𝘩 𝘪𝘵 𝘪𝘴 𝘢 𝘥𝘪𝘤𝘵𝘪𝘰𝘯𝘢𝘳𝘺, 𝘵𝘩𝘦 𝘣𝘰𝘰𝘬 𝘪𝘴 𝘸𝘳𝘪𝘵𝘵𝘦𝘯 𝘴𝘰 𝘪𝘯𝘵𝘦𝘳𝘦𝘴𝘵𝘪𝘯𝘨𝘭𝘺 𝘵𝘩𝘢𝘵 𝘪𝘵 𝘸𝘰𝘶𝘭𝘥 𝘯𝘰𝘵 𝘣𝘦 𝘢𝘯 𝘰𝘷𝘦𝘳𝘴𝘵𝘢𝘵𝘦𝘮𝘦𝘯𝘵 𝘵𝘰 𝘴𝘢𝘺 𝘵𝘩𝘢𝘵 𝘋𝘳. 𝘑𝘦𝘢𝘯-𝘗𝘩𝘪𝘭𝘪𝘱𝘱𝘦 𝘈𝘶𝘮𝘢𝘴𝘴𝘰𝘯 𝘪𝘴 𝘵𝘩𝘦 𝘚𝘵𝘦𝘷𝘦𝘯 𝘚𝘱𝘪𝘦𝘭𝘣𝘦𝘳𝘨 𝘰𝘧 𝘤𝘳𝘺𝘱𝘵𝘰𝘨𝘳𝘢𝘱𝘩𝘺. 𝘑𝘗 𝘬𝘯𝘰𝘸𝘴 𝘩𝘰𝘸 𝘵𝘰 𝘵𝘦𝘭𝘭 𝘢 𝘴𝘵𝘰𝘳𝘺.”

That is quite the praise by @iSandipD in his review of 𝗖𝗿𝘆𝗽𝘁𝗼 𝗗𝗶𝗰𝘁𝗶𝗼𝗻𝗮𝗿𝘆: 𝟱𝟬𝟬 𝗧𝗮𝘀𝘁𝘆 𝗧𝗶𝗱𝗯𝗶𝘁𝘀 𝗳𝗼𝗿 𝘁𝗵𝗲 𝗖𝘂𝗿𝗶𝗼𝘂𝘀 𝗖𝗿𝘆𝗽𝘁𝗼𝗴𝗿𝗮𝗽𝗵𝗲𝗿, by Jean-Philippe (JP) Aumasson (@veorq). Sandip is recommending the book for the Canon Hall of Fame.

📝 Read the review: https://cybercanon.org/crypto-dictionary-500-tasty-tidbits-for-the-curious-cryptographer/

🛍️ If interested in purchasing, please consider using this link to support the Canon: https://amzn.to/43VPQap

@nostarch #CyberscurityBooks #CyberCanonHoFCandidate #Cryptography

👩‍💻𝗜𝘁'𝘀 𝗥𝗲𝘃𝗶𝗲𝘄 𝗗𝗮𝘆!🧠

This week, Kevin Magee provides a Hall of Fame recommendation:

"Sarah Armstrong-Smith’s 𝙐𝙣𝙙𝙚𝙧𝙨𝙩𝙖𝙣𝙙 𝙩𝙝𝙚 𝘾𝙮𝙗𝙚𝙧 𝘼𝙩𝙩𝙖𝙘𝙠𝙚𝙧 𝙈𝙞𝙣𝙙𝙨𝙚𝙩 is a compelling and necessary read for anyone tasked with defending digital infrastructure in a world shaped by human adversaries. Rather than focus on technical exploits or reactive controls, Sarah reframes cybersecurity through the lens of attacker motivation, what drives threat actors, how they think, and why that understanding changes everything about how we build our defenses."

Read Kevin’s detailed review of why he believes it will help you "transform your response to threats" ➡️ https://tinyurl.com/56nzxp5z

#CISO #SecurityAwareness #ThreatIntelligence #CyberCanonHoFCandidate

📅𝗧𝗼𝗱𝗮𝘆 𝗶𝗻 𝗖𝘆𝗯𝗲𝗿𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗛𝗶𝘀𝘁𝗼𝗿𝘆!

On November 2, 1988, the Morris Worm became the first major computer virus to spread across the Internet. What began as a graduate student’s “experiment” quickly spiraled out of control, taking down much of the early Internet and costing millions in cleanup. It also gave rise to one of cybersecurity’s most important realizations: even well-intentioned code can cause catastrophic damage in a connected world.

To learn more, 𝙁𝙖𝙣𝙘𝙮 𝘽𝙚𝙖𝙧 𝙂𝙤𝙚𝙨 𝙋𝙝𝙞𝙨𝙝𝙞𝙣𝙜 by Scott Shapiro, a #CyberCanonHoFCandidate, covers the #MorrisWorm as one of its five infamous hacks. See our review ➡️ https://tinyurl.com/r2b3zc2u

💥And as a bonus, many may not be aware that 𝙏𝙝𝙚 𝘾𝙪𝙘𝙠𝙤𝙤'𝙨 𝙀𝙜𝙜 also contains an interesting perspective on the Morris Worm. A year after astronomer Cliff Stoll's spy tracking journey, he was one of many admins around the country who were investigating the Morris Worm live as it was spreading through the night. Cliff writes about this experience in the book's epilogue, where he discovers that the author of the worm was actually the son of NSA's Chief Scientist, Robert Morris, whom Cliff worked with in relation to his international hacker sleuthing a year earlier.

#CyberCanonHoF review ➡️ https://tinyurl.com/3rywf7zw

#CyberCanon #CybersecurityHistory #CybersecurityBooks

If your mission this October is to elevate awareness, not just compliance, here is a book worth putting in your team’s hands...

𝙄𝙛 𝙄𝙩’𝙨 𝙎𝙢𝙖𝙧𝙩, 𝙄𝙩’𝙨 𝙑𝙪𝙡𝙣𝙚𝙧𝙖𝙗𝙡𝙚 by @mikko became a candidate for our Hall of Fame by weaving technical insight with human stories, showing how every connected thing holds risk.

👉 https://tinyurl.com/y9ne2uzk

Why this matters during #CybersecurityAwarenessMonth:
1. In a hyperconnected world, vulnerability is the shadow companion of innovation.
2. Technology alone cannot defend. The human factor is equally critical.
3. Stories fuel understanding. A cautionary tale sticks longer than dry technical specs.

#CyberCanonHoFCandidate #SecurityCulture #CybersecurityBooks

🔏𝗥𝗲𝘃𝗶𝗲𝘄 𝗗𝗮𝘆 𝗧𝘂𝗲𝘀𝗱𝗮𝘆!📖

Differential Privacy is an increasingly popular, though controversial, technique for protecting confidential data by carefully introducing statistical noise. Even if you are very familiar with #DP, you likely don't know quite as much as Dr. Simson Garfinkel ( @xchatty )

This week, Ben Rothke ( @benrothke ) provides a Hall of Fame recommendation in his review of Garfinkel's new book, 𝘋𝘪𝘧𝘧𝘦𝘳𝘦𝘯𝘵𝘪𝘢𝘭 𝘗𝘳𝘪𝘷𝘢𝘤𝘺, from The MIT Press Essential Knowledge Series. ( @themitpress )

Review👉 https://tinyurl.com/2s3jk4cn

#CybersecurityBooks #CyberCanonHoFCandidate #DifferentialPrivacy #DataPrivacy

⚖️𝗕𝗼𝗼𝗸 𝗥𝗲𝘃𝗶𝗲𝘄 𝗗𝗿𝗼𝗽!⚖️

This week, @dykstra provides a Hall of Fame recommendation review of 𝘾𝙮𝙗𝙚𝙧𝙨𝙚𝙘𝙪𝙧𝙞𝙩𝙮 𝙞𝙣 𝘾𝙤𝙣𝙩𝙚𝙭𝙩: 𝙏𝙚𝙘𝙝𝙣𝙤𝙡𝙤𝙜𝙮, 𝙋𝙤𝙡𝙞𝙘𝙮, 𝙖𝙣𝙙 𝙇𝙖𝙬 by professors 🧑‍🏫 Chris Hoofnagle and Golden Richard III.

Josiah writes that the textbook "fills a long-standing gap. It does not tell readers what to think—it teaches them how to think about cybersecurity in a connected, contested and continually evolving world. (...) equally valuable for newcomers and experienced practitioners who want to see the bigger picture. For its breadth, clarity, and critical perspective, it belongs in the CyberCanon Hall of Fame."

Full review 👉https://tinyurl.com/mv6255mk

#CyberCanonHoFCandidate #CybersecurityBooks #Law #Policy