惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

The Register - Security
The Register - Security
云风的 BLOG
云风的 BLOG
U
Unit 42
F
Fortinet All Blogs
The GitHub Blog
The GitHub Blog
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
D
Docker
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
S
Secure Thoughts
Hacker News: Ask HN
Hacker News: Ask HN
Vercel News
Vercel News
S
Security @ Cisco Blogs
GbyAI
GbyAI
Stack Overflow Blog
Stack Overflow Blog
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
I
Intezer
MongoDB | Blog
MongoDB | Blog
AI
AI
MyScale Blog
MyScale Blog
Engineering at Meta
Engineering at Meta
Y
Y Combinator Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Proofpoint News Feed
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
W
WeLiveSecurity
博客园 - 叶小钗
S
SegmentFault 最新的问题
N
News | PayPal Newsroom
WordPress大学
WordPress大学
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
D
DataBreaches.Net
小众软件
小众软件
Microsoft Azure Blog
Microsoft Azure Blog
Spread Privacy
Spread Privacy
H
Help Net Security
美团技术团队
博客园 - 司徒正美
T
Threat Research - Cisco Blogs
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
K
Kaspersky official blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
V
Vulnerabilities – Threatpost
TaoSecurity Blog
TaoSecurity Blog
N
Netflix TechBlog - Medium
L
Lohrmann on Cybersecurity
J
Java Code Geeks
量子位
Martin Fowler
Martin Fowler
博客园_首页

Heimdal Security Blog

Top 6 Managed Detection and Response Providers Cyber-Aware Customers Are Raising the Bar for MSPs and Other Vendors Cyber-Aware Customers Are Raising the Bar for MSPs and Other Vendors How to scale your patches without scaling your team (the patch wave) AI didn't break patching. It showed us patching was already broken. Heimdal Launches MSP Onboarding Wizard to Help Partners Onboard Microsoft CSP Customers in 2 Minutes How Dynamic Defense shuts an attacker out without shutting down the business Static security has run out of road. The case for Dynamic Defense Breaking the MSP Echo Chamber: The Power of Community How attackers built a RAT on a Windows machine using its own .NET compiler Attacker enables RDP, creates admin, erases evidence in ten seconds Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It Your Next Insider Threat May Be an AI Coworker The OSI Model and Its Two Missing Layers Heimdal® Marks Six Years of Consecutive ISAE 3000 SOC 2 Type II Certification The State of AI Risk Management in 2026 AI Will Absorb 99.98% of SOC Triage Within a Year, as 79% of IT teams brace for AI-driven workload shift Top 10 Cybersecurity Companies in Europe Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment Nordic MSPs Can Now Access Heimdal’s Unified Security and Compliance Platform Through Elovade OpenClaw Incidents Show Why AI Adoption Pressure Puts Companies at Risk Heimdal Claims Industry First With a Cyber Essentials Control Mapping for PEDM to Help Organisations Prove Least Privilege Five Predictions for Cyber Security Trends in 2026 Heimdal Achieves OPSWAT Gold Certification for Anti-Malware How to Avoid Holiday Shopping Scams (From a Former Cyber Detective) ITDR Best Practices: How to Detect, Prevent, and Contain Critical Identity Threats When Buyers Discount MSPs With One Big Customer You’re Not Technical? That Excuse Just Expired! Tool Sprawl Taxes Your Business More Than You Think Heimdal 5.1.0 RC Dashboard: Smarter Automation, Stronger Compliance, and Smoother Control Can Generative AI Be Weaponized for Cyberattacks? Digital Warfare and the New Geopolitical Frontline Nearly 40% of 2024 Ransomware Payouts May Have Gone to Russia, China & North Korea
You Only Know What You’ve Got When Its Gone
Adam Pilton · 2026-03-27 · via Heimdal Security Blog

Although Cyber Security is often seen as technical and maybe even dull, it has many similarities to our day-to-day life. In this blog I call out one of the most important – You Only Know What You’ve Got When Its Gone.

Let me start by putting this statement into context in the current chapter of my personal life.

My World Just Changed

Recently my daughter told me that she didn’t want to hold my hand as we were nearing her school. When we were walking to school but not in the immediate vicinity, hand holding was fine. In fact, she was happy even. But the new rule was clear: not near the gates. Not when there was a chance her friends and peers may see.

Note – In writing this, I have made the judgement that not many primary school children are reading cyber security articles!

Let me put this into context, I’ve been here before with my older children, so I knew this moment was coming.

And yet, in the moment my daughter very gently and kindly delivered the news to me, I felt something shift quietly inside me. It wasn’t grief exactly more of a recognition that a small, ordinary thing I had taken completely for granted was beginning to fade and I hadn’t ever stopped to appreciate it fully while I had it.

And to be frank, that’s the nature of things we depend upon. We don’t value them until they’re no longer there. I knew this moment was coming, of course it was!

The Internet Is the Same

Think about what you did yesterday morning. I imagine at some point you checked emails, joined a call, logged into an application or platform, maybe even placed an online order or approved a payment.

Every single one of those actions rested on an assumption that is so fundamental you didn’t even make it consciously. And that is, that you assumed technology would work.

Most days, it does and because it does, you never think about it.

Think back to the 19th of July 2024. This is the day when CrowdStrike pushed a faulty software update and an estimated 8.5 million Windows devices went offline simultaneously. Airlines couldn’t board passengers, Hospitals reverted to paper, Banks went dark even some broadcasters went off air. Businesses that had never once considered themselves reliant on a single piece of software discovered, in the space of an hour, just how wrong they were.

Fortunately, the world didn’t end! But for a few hours, vast parts of it became completely helpless.

That is what dependency looks like when the thing we depend upon disappears.

incident response template

We Assume Continuity

The reason this catches organisations off guard isn’t negligence, at least not always. It’s something more human than that.

We are wired to assume that what has always been available will continue to be available. Whether that’s the lights coming on, the tap running or even that the internet will be available.

Psychologists call this normalcy bias. The tendency to underestimate the likelihood of disruption because disruption has not happened to us yet and in business, this bias is expensive.

When I worked as a cyber detective, I saw it repeatedly. Organisations that had never suffered a serious incident genuinely believed they were prepared. They hadn’t tested their resilience and, in some cases, had no right to be thinking that way, but because nothing had gone wrong so far, they felt like they were ready.

The absence of failure had been mistaken for the presence of readiness. In hindsight it was clear to these organisations they are not the same thing, but hindsight is too late.

Your Business Is More Fragile Than You Think

Consider for a moment what your organisation cannot do without its technology functioning. Not the things that become harder but the things that simply become impossible.

Whether that be taking orders, communicating with suppliers, serving customers, accessing data such as contracts, processing financial records or patient data and even paying staff.

Most businesses today are built upon technology and are dependent upon it.  Yet very few leadership teams have sat down and mapped that dependency honestly. They have not asked which systems are critical, what happens when they fail, or how long the business can sustain operations without them.

CrowdStrike was a software update and not a cyber attack. The fragility it exposed had nothing to do with malicious intent and everything to do with unexamined dependency.

A ransomware attack, a supply chain compromise, a third-party outage, all of these carry the same lesson. If you have not thought about what you depend upon, you will only discover it in the worst possible moment.

My Daughter Will Grow in Independence But Your Business Cannot Afford To

What I feel watching my daughter grow is huge pride as she becomes her own person. Her independence is healthy and right and something that brings me immense joy.

Digital dependency in business works differently, you do not grow out of it. You can’t because it just deepens with every new tool, cloud migration and every automated process adding further layers.

The question is not whether your business depends on technology, because it likely does. The question is whether your leadership understands that dependency and has made conscious defensible decisions about how to protect it.

That means knowing which systems are critical and testing what happens when they fail. And more than that, having an action plan in case of technology failure that does not rely entirely on the IT team being available and fully functional at two in the morning.

The key ingredient here is making sure the people who lead the organisation and not just those who manage the infrastructure, understand what is at stake.

The Challenge

The hand holding will stop, that is inevitable. I knew it was coming; I had experienced this moment before with my older children, I didn’t expect to be holding hands with my children when they were adults!

You don’t know when a cyber attack is coming, it may never happen.

Map your critical dependencies this quarter and pressure test your assumptions. Ask the question your board has been quietly avoiding: if our core systems went offline tomorrow morning, what would we actually do?

Because the organisations that cannot answer that question are not secure. They are simply lucky. And luck, as CrowdStrike reminded eight and a half million devices in a single morning, has a habit of running out without warning.

If you liked this article, follow us on LinkedIn, Reddit, X, Facebook, and Youtube.

Newsletter

If you liked this post, you will enjoy our newsletter.

Get cybersecurity updates you'll actually want to read directly in your inbox.

Author Profile

Adam is the Cybersecurity Advisor at Heimdal. With over 15 years in law enforcement, where he served as a Detective Sergeant leading Covert Operations and Cyber Crime teams, Adam transitioned to cybersecurity in 2016. Known for simplifying complex topics, Adam leverages his investigative and communication experience to engage leaders and end users alike, driving stronger cyber resilience.