Signal vs. Noise

Cutting through the chaos of cybersecurity and technology — so you can lead with clarity.

Your AI has a trust model. You didn't write it.

May 10, 2026

•

4 min read

Your AI has a trust model. You didn't write it.

Pillar Security found a CVSS 10 in Google's Gemini CLI last month. Not a coding error. A trust error. Your AI tools all have it. Most organizations haven't designed the answer.

Michael Faas

9 in 10 SMBs have a compromised user right now.

May 3, 2026

•

4 min read

9 in 10 SMBs have a compromised user right now.

The question isn't whether. It's whether anyone is watching.

Michael Faas

You Bought a Product. It's Running a Process You Never Designed.

Apr 26, 2026

•

4 min read

You Bought a Product. It's Running a Process You Never Designed.

AI coding agents aren't the tool you bought. They're the process you have to govern — and that's a leadership gap, not a tooling gap.

Michael Faas

Security doesn't fail in silos — it fails in cascades.

Apr 19, 2026

•

3 min read

Security doesn't fail in silos — it fails in cascades.

The cascades everyone's writing about are between companies. The ones that take you down are inside yours. One weak domain. Nine downstream failures. Most security teams can't see the shape.

Michael Faas

The Soft Underbelly Doesn't Care About Your Clearance Level

Apr 12, 2026

•

6 min read

The Soft Underbelly Doesn't Care About Your Clearance Level

The head of the FBI got phished. Your executives are next.

Michael Faas

Your AI Supply Chain Is Already Compromised

Apr 5, 2026

•

6 min read

Your AI Supply Chain Is Already Compromised

They didn't hack the AI. They hacked the security tools first.

Michael Faas