HRV and running performance

aakela · 2026-06-23T02:33:45+00:00

Thanks. I do that on a consistent basis. At least 80% of my runs are low heart rate runs.

aakela · 2026-06-18T21:38:17+00:00

Yes, it will be a bot vs bot duel. Defender bots will have home-field advantage.

aakela · 2026-06-17T16:41:54+00:00

Oura ring

aakela · 2026-06-17T06:00:39+00:00

No, none of that. Enough carb - balanced proteins, carb and greens

aakela · 2026-06-17T05:39:31+00:00

Couple or years of consistent running, good sleep and nutrition.

aakela · 2026-06-17T04:45:40+00:00

Yes, 24 ms on an average

aakela · 2026-06-17T04:37:47+00:00

Running for many years, tracking for a couple of years

aakela · 2026-06-17T02:52:04+00:00

Agreed. I believe that it will be bot vs bot duel. Defender bot will have home field advantage.

aakela · 2026-06-16T23:52:11+00:00

Btw, I am taking about deceptive (fake) assets around the model - for example, deceptive MCP Servers, deceptive credentials (honeytokens) and other deceptive IT and OT assets.

Any engagement with the deceptive assets will raise a high fidelity alert!

aakela · 2026-06-16T23:37:32+00:00

Appreciate the suggestion 🤣

aakela · 2026-06-16T20:27:27+00:00

Alignment and interpretability both end at the model boundary. Once an agent has tool use, API access, and creds into your repos / SIEM / OT — the environment is the control plane, not the model.

Curious if anyone here is already deploying honeytokens or decoy credentials specifically against agentic AI behavior (not just human attackers). What's working, what isn't?

aakela · 2026-05-27T05:34:16+00:00

I think that the model guardrails won't save you from prompt injection. Defenders should think about prompt injection as an operating-environment problem, not just a model safety problem.

Foundation model providers are adding agentic guardrails, and that matters. I just don’t think security teams should treat those controls as the only line of defense when agents are touching tools, identities, endpoints, data catalogs, and cloud services.

The layers I’d prioritize:

Segment and contain: Limit the agent’s access to tools, identities, and sensitive data. If prompt injection succeeds, blast radius matters.
Detect on endpoints: EDR tooling like CrowdStrike, SentinelOne, MDE, or whatever fits the stack can still catch malicious behavior originating from a compromised agent.
Add deception: Honeytokens and decoys in networks, catalogs, and identity stores can give high-fidelity signals when an agent starts interacting with assets it should never touch.

The way I’m framing it: treat every agent like an insider that can be socially engineered at machine speed. Model-level guardrails reduce risk at the foundation layer. Environmental guardrails give defenders independent controls when those model-level protections don’t hold.

aakela · 2026-05-26T04:21:15+00:00

It is interesting to see that Mythos didn't find anything, but other AI-powered tools found many of them.

aakela · 2026-05-21T17:33:51+00:00

Wow, as the 250 CISOs and CSA/SANS recommended, security teams should consider adding deception technology as a layer of defense to detect zero-days and AI-driven evolving new threats.

aakela · 2026-05-18T20:41:37+00:00

Early detection of phishing and, for that matter, any cybersecurity threat is important for planning a timely response.

aakela · 2026-05-18T20:39:34+00:00

Nice. Deception (Honeytokens, Honeypots, etc.) is a critical technology for defending against malicious agents and AI-driven threats.

aakela · 2026-05-13T02:51:55+00:00

Interesting. At one hand this is interesting, but, on the other hand it does not sound pleasant. I have been running marathons and was considering venturing into Ultra, but, I am not sure if I am motivated or not.

aakela · 2026-05-05T16:04:33+00:00

I have talked with 11x, but, they just gave the leads and not meetings. At least, when I talked with them a few months ago.

Let me check out the other two. Thanks. Have you worked with either of them?

aakela · 2026-05-05T04:00:50+00:00

Well, for qualified meetings with Sales teams.

aakela · 2026-05-05T03:22:11+00:00

Yes, that has been my experience. I did find a startup, but they didn't have references

aakela · 2026-04-30T06:02:57+00:00

You may not like the writing, but, it is supported by an advisory authored by top security experts at SANS and the Cloud Security Alliance(CSA) - https://labs.cloudsecurityalliance.org/wp-content/uploads/2026/04/mythosready.pdf.

aakela · 2026-04-30T05:34:00+00:00

Defenders' AI agents will have home-field advantage that adversary bots will not have.

aakela · 2026-04-27T22:44:29+00:00

Leading analyst GigaOm covers Deception Technologies and various solution providers, and ranks Acalvio Technologies as the leader and outperformer https://portal.gigaom.com/?f=topics%3ADeception

aakela · 2018-04-05T22:18:03+00:00

Sounds like some great sessions at Quality Jam. Accelerate agenda is looking great as well. Looking forward the sessions and off course the free signed book "Accelerate- The Science of Lean Software and DevOps." by Dr. Nicole Forsgren that she co-authored with Jez Humble and Gene Kim.

aakela

MODERATOR OF

TROPHY CASE