Papers and Writing

This page brings together papers, presentations, articles and blogs.

Reports and chapters

• EU Institute for Security Studies — Guardian of the Galaxy: EU sanctions in cyberspace (2019)
• UN Internet Governance Forum — Establishing and Supporting Computer Security Incident Response Teams for Internet Security (2017)
• Organization of American States & Inter-American Development Bank — Incident Response Capacity Building in the Americas (2016)
• WOMBAT Workshop on Information Security Threats — The SANS Internet Storm Center (2008)
• Journal of Information Warfare — Belgium's intelligence community: new challenges and opportunities (2006)
• Australian Conference for Information Warfare and Security — Deception on the network: thinking differently about covert channels | slides (2006)
• Research report — Forensic investigation and its relationship with IA and Corporate Governance (2005)
• SANS GCIA — IT Crime Profiling using Intrusion Detection (2004)
• Technical documentation — Hardening Windows NT & 2000 machines (2001)
• Technical documentation — Setting up an OS/2 firewall (2001)
• Communicating for Diversity — Culture, ethnicity and their impact on risk communication (Book)

Guest articles

• High Growth Scotland — Making your business resilient to data breaches (May 2019)
• New America DigiChina — Online Symposium: Chinese Thinking on AI Security in Comparative Context (February 2019)
• Elsevier: Computer Fraud & Security — The future of Internet governance and cyber-security (2018)
• Harvard Business Review — The key to better cybersecurity: Keep employee rules simple (November 2017)
• IT Pro Portal — 2017 predictions: US Isolationism, DDoS and Data Sharing (2017)
• SC Magazine — Cooperation is key to Africa's security future (December 2013)
• Total Retail — 3 ways to minimize cyber security risk

Blogs

• InformationWeek — Top 5 Strategies for Cybersecurity Red Teaming (January 2025) — thanks to Justin Tiplitsky for his work on this entire space
• CircleID — The Operationalization of Norms and Principles on Cybersecurity (2019)
• FIRST — FIRST at the Global Conference on Cyberspace (2018)
• O'Reilly — Incident Management at the Edge (2016)
• Fastly — Engineering a more resilient internet, Best Practices for protecting your domain, How college security competitions help us build great security teams
• SANS — Guarding the guardians: a story of PGP key ring theft, Non-malicious compromise pointing to a benign VBScript!, Responding to a file-parsing application attack, Cyber attacks against Tibetan communities, Overview of cyber attacks against Tibetan communities, Extracting scripts and data from suspect PDF files
• Microsoft Ecostrat — Inside the MAPP Program, Building a safer internet... together!, and others
• Microsoft SRD — Extended Protection for Authentication, MS09-008: DNS and WINS Server Security Update in More Detail (2009)

Media

• CSO Online — Adobe evolves its risk management strategy with homegrown framework (September 2024) — all credit for this amazing work goes to Rahat Sethi and his team
• Threatpost — Zendesk Exposes 10,000 Accounts to Unknown Third Party (2019)
• DER SPIEGEL — Softwareschwachstellen: Das Geschäft mit der Lücke (2011)
• The Register — Microsoft closes hole used to attack industrial plants (2010)
• Future Zone, Österreichischer Rundfunk — Targeted trojans affecting minority religious groups (2008)
• Search Engine, CBC Radio Canada — Targeted Trojan Attacks (2008)
• Security.NL — Als dodelijke PDF's je netwerk infiltreren (2008)
• Bloomberg — The new e-spionage threat (2008)
• Washington Post — Cyber Attacks target Pro-Tibet Groups (2008)
• BBC — Tibet - the cyber wars (2008)
• UPI — Analysis: Cyberattacks on Tibet groups (2008)
• ZDNet — Stolen data being tunnelled through EU and US

Interviews

• Adobe Blog — Catching up with Adobe's Chief Security Officer, Maarten Van Horenbeeck (2023)
• K logix — Feats of Strength September 2018 (PDF, 2018)
• BlueKaizen — Interview with Mr. Maarten Van Horenbeeck, Chairman of First.org (2015)
• INCYBER — Interview of Maarten Van Horenbeeck, FIC Advisory Board Member
• PCMag — The Next Hot Cybersecurity Skill for Your Resume? Empathy
• SecurityWeek — CISO Conversations: Maarten Van Horenbeeck, SVP, Chief Security Officer at Adobe
• SDxCentral — Adobe CSO: How We're Tackling the Security Talent Shortage
• DataNews — Interview: De waarde van GenAI is groter voor de verdedigers dan voor de aanvallers