Yesterday, Qualys announced a new vulnerability called GHOST. (Since Shellshock, everyone thinks vulnerabilities need to be named.) This vulnerability is in a ...
- Brian
- No Comment
A Skeleton Key to Your Network
There is a new report on a serious piece of malware called Skeleton Key that allows Active Directory logins using a single ...
- Brian
- No Comment
The Asymmetric Costs of Security
I ran across a great article here the other day about a presentation at the Kiwicon in New Zealand. What really caught ...
- Brian
- No Comment
Now that the line has been crossed, where will it end?
About all I can say is WOW. Earlier this month, I mentioned that Sony didn’t have the best security practices as evidenced ...
- Brian
- No Comment
Now we know that Sony doesn’t have good security inside as well as outside
"Wow" is about all I can say to this article about the recent Sony hack. Along with all the other data that was taken, ...
- Brian
- No Comment
So even parking services need 2FA
So after a nice Thanksgiving holiday here in the U.S. last week, we come back to news of yet another hack involving ...
- Brian
- No Comment
It’s Not Just Your Employees You Need to Worry About
As we approach Thanksgiving this year in the U.S., we are reminded of the hack of the point-of-sale systems at Target at about ...
- Brian
- No Comment
Something else we may be able to learn from WireLurker
For years, Apple has said they don’t suffer from malware, but then every so often, something pops up and hits them fairly ...
- Brian
- No Comment
Rest in Peace, SSLv3
First there was Heartbleed, and now we have POODLEbleed. It seems like there is a never-ending stream of bad news about security ...
- Brian
- No Comment
Don’t let your 2FA be Shellshocked!
The recent vulnerability announced for the Bash shell has been named Shellshock (this seems to be a new news trend after the Heartbleed OpenSSL ...