Gene's Field Notes

Gene's Field Notes

Wired to break things. Built to secure them.

Cloud security and AI governance for the environments where failure isn't an option. No vendor spin, just field notes from someone still doing the work.

Latest

How Credential Stuffing Actually Works Now

security data-privacy

How Credential Stuffing Actually Works Now

Credential stuffing attacks now run on infostealer malware, not just breach dumps. Here is the updated defense stack: passkeys, password managers, and HIBP monitoring.

April 19, 2026 · 7 min read

MFA is Not the Holy Grail of Security

MFA is Not the Holy Grail of Security

April 18, 2026

What to Do After a Data Breach (A Practitioner's Runbook)

What to Do After a Data Breach (A Practitioner's Runbook)

April 16, 2026

MCP Servers Are a Shadow IT Problem You Don't Know You Have Yet

MCP Servers Are a Shadow IT Problem You Don't Know You Have Yet

March 25, 2026

Navigating Security in the Generative AI Era

Navigating Security in the Generative AI Era

November 15, 2025

More Posts

What Motivates Attackers to Come After You?

security data-privacy

What Motivates Attackers to Come After You?

November 1, 2022 · 5 min read

Web Account Security Hygiene: What I Actually Do (2026 Update)

security data-privacy

Web Account Security Hygiene: What I Actually Do (2026 Update)

November 1, 2022 · 7 min read

How to Protect Yourself From Credential Stuffing Attacks

security data-privacy

How to Protect Yourself From Credential Stuffing Attacks

November 1, 2022 · 8 min read

Creating an Incident Response Plan

security data-privacy

Creating an Incident Response Plan

November 1, 2022 · 6 min read