Everyone gets a kick out of TV shows and news reports that feature stupid criminals. People who get themselves locked inside the store they are trying to rob or stuck…
So about nine years ago Tan at the L0pht first wrote about the creation of a Cyber Underwriters Laboratory. Like the real UL the Cyber UL would be tasked with…
One of the more popular features of HNN (The Hacker News Network) was the daily list of web page defacements that was maintained at the time by Attrition.org. Maintaining such…
I'm still busy recovering from the excellent Source Boston conference and I will post a recap soon but I wanted to get this out there. Last week I wrote about…
Think that cool USB thumb drive you just bought with the word of 'encryption' written in big letters all over the package is really secure? Think again. ComputerWorld recently reviewed…
When I see something labeled tamper-resistant or even tamper-proof I don't assume it is secure I just think that it is a little more difficult to break into than something…
So I was having lunch with one of the organizers of the Source Boston 2008 conference yesterday (Spicy Beef Bowl, mmmmm) and realized that this is going to be one…
If a vendor finds a vulnerability in a competitors code are they obligated to tell them? What exactly is ethical and or responsible disclosure when it comes to competing vendors?…
More POS Hacks Grab CC Numbers
Everyone gets a kick out of TV shows and news reports that feature stupid criminals. People who get themselves locked inside the store they are trying to rob or stuck…
Cyber UL – Reloaded
So about nine years ago Tan at the L0pht first wrote about the creation of a Cyber Underwriters Laboratory. Like the real UL the Cyber UL would be tasked with…
Security Ethics? Are there any?
I have a list of websites that I read as part of my morning ritual just like everybody else. It helps fritter away the first few minutes of the day…
Defacement Archive May Close
One of the more popular features of HNN (The Hacker News Network) was the daily list of web page defacements that was maintained at the time by Attrition.org. Maintaining such…
More USB Snake Oil
I'm still busy recovering from the excellent Source Boston conference and I will post a recap soon but I wanted to get this out there. Last week I wrote about…
More secure products that aren’t
Think that cool USB thumb drive you just bought with the word of 'encryption' written in big letters all over the package is really secure? Think again. ComputerWorld recently reviewed…
Tamper Resistant Point of Sale Machine Isn’t
When I see something labeled tamper-resistant or even tamper-proof I don't assume it is secure I just think that it is a little more difficult to break into than something…
Less Than Two Weeks to Source2008
So I was having lunch with one of the organizers of the Source Boston 2008 conference yesterday (Spicy Beef Bowl, mmmmm) and realized that this is going to be one…
AES = XOR = Secure? WTF!?!
I don't have time for all of the stupidity out there but this is just to stupid to let pass by. Easy Nova a German company that makes a variety…
Responsible disclosure for vendors?
If a vendor finds a vulnerability in a competitors code are they obligated to tell them? What exactly is ethical and or responsible disclosure when it comes to competing vendors?…
« Previous Page — Next Page »