Back Issues This Week → Calendar → Current Issue → Popular →

How can we spend so much on security and yet see such slow progress? Unlike most other infrastructure, we're not just fighting Murphy's law - our opposition is the creativity of other humans. Software exploitation isn't just a technical problem - it's a thriving, sophisticated marketplace with professional sellers, brokers, and buyers. While your security team focuses on vulnerability counts and compliance checklists, attackers are calculating their potential return on investment.

What's the market rate for exploiting your company's software? I've spent more than a decade watching this market evolve, and the most effective defensive strategy I've seen isn't about eliminating every vulnerability - it's about making exploitation of your systems more costly than attacking alternative targets.