microsegment.io

segment all the things

Hard Truths #2: Patching Is Whack-a-Mole, Not Strategy

The structural gap between exploit and patch is growing. Architecture is the only answer.

Attackers weaponize vulnerabilities in hours. Your patch cycle takes weeks. The math doesn't work. Here's what does.

Posted by Alexander Goller on Tuesday, March 31, 2026

Hard Truths #1: Your Security Tools Are the Attack Surface

Four vendors. Same pattern. Management consoles are the new perimeter.

Cisco FMC, SolarWinds, BeyondTrust, VMware - the tools protecting your network became the entry point. Why the management plane is the most dangerous attack surface in enterprise security.

Posted by Alexander Goller on Thursday, March 26, 2026

M-Trends 2025: Unpacking the Threats and Why Microsegmentation is Your Strongest Defense

M-Trends 2025: Unpacking the Threats and Why Microsegmentation is Your Strongest Defense The recently released Mandiant M-Trends 2025 report offers a insightful look into the evolving cybersecurity landscape. As we digest its key findings, one thing becomes abundantly clear: attackers are becoming more opportunistic and sophisticated, exploiting any weakness they can find. For those of us focused on building resilient security architectures, the report underscores the importance of granular control and containment – principles at the heart of microsegmentation.

Posted by     "" on Tuesday, May 20, 2025

Attackers think in graphs

Defenders think in tables

The Graph Advantage: Why Attackers Think in Networks While Defenders Think in Rows When a security analyst opens their SIEM dashboard, they typically see what defenders have seen for decades: endless tables of logs, sorted by timestamp, filtered by IP address, grouped by event type. Meanwhile, somewhere in the digital shadows, an attacker is mapping out their target’s infrastructure like a cartographer charting new territory—not in rows and columns, but as an interconnected web of relationships, vulnerabilities, and opportunities.

Posted by "" on Wednesday, May 14, 2025

Recommended reading: Cyber Resilience: A Perishable Skill That Needs Practice

Recommended Reading: Cyber Resilience: A Perishable Skill That Needs Practice Great piece on LinkedIn by Prof. Dan Haagman: Cyber resilience is like going to the gym: skip your workouts and you’ll get flabby fast. His big insight? Even seasoned execs throw out the playbook under pressure and just wing it. The fix? Get those tabletop exercises scheduled and keep adversary sims running. Your DR plan from 2015 won’t cut it against modern ransomware. Building muscle memory through practice is what separates the pros from the panicked.

Posted by     "Alexander Goller" on Monday, April 21, 2025

avatar

Principal Solutions Architect, Zero Trust Evangelist, BSD enthusiast

FEATURED TAGS
2026 attacks containers hard-truths identity kubernetes lateral-movement links management-plane metrics microsegmentation microservices mitre segmentation supply-chain weekly-roundup zero-trust