Paulo Shakarian
Recent Posts
Evaluating Machine Learning Performance: Understanding Precision and Recall
Precision and recall are two of the widest-used measurements of performance in machine learning and are also very relevant to cybersecurity applications.
Why the NIST CVSS Score is NOT Machine Learning
The NIST CVSS score is widely used to prioritize vulnerabilities in many products and by many security teams. This video discusses why this scoring method is not machine learning, and why CVSS..
Did you know you’ve already done some machine learning?
Did you know you’ve already done some machine learning in your life?
Most people are surprised to find out that some simple problems from their high school years can be thought of as machine..
3 Common Pitfalls When Applying Machine Learning to Cybersecurity
In today’s episode, we discuss three pitfalls commonly seen when applying machine learning to cybersecurity.
Understanding the SolarWinds Hack: Echoes of NotPetya
Last week we heard of software companies around the world being breached due to a compromised software update process in SolarWinds Orion software. This tactic, which leverages the trust..
Asset-Based vs. Threat-Based Risk Management
Asset-Based vs. Threat-Based Risk Management
The Vulnerabilities FireEye Hackers will Start to Use
Earlier in the week, it was reported that FireEye was breached – likely by Russian hackers. The hackers supposedly were seeking penetration testing tools used by FireEye’s services to probe..
We Patch Everything...
In talking with many Chief Security Officers, we hear consistently that vulnerability prioritization is a difficult issue. Indeed, a recent study by the Ponemon Institute showed nearly 60% of..
The Difference Between Artificial Intelligence and Machine Learning
Have you ever spoken to a salesman who starts the pitch using the term Machine Learning, but later switches to the term “Artificial Intelligence”? This seems rather imprecise – especially for..