Quantcast
Channel: Security Soapbox
Browsing latest articles
Browse All 25 View Live

Light at the End of the Tunnel?

...or do I hear a train coming?Microsoft has announced (http://www.microsoft.com/technet/security/bulletin/advance.mspx) that there will be no Black Tuesday (no security patches) this month. Have we...

View Article



A Small Cup of Hot Cocoa

Less is More!Less running or installed on your computer is more secure. With less running on your computer there are fewer attack vectors...

View Article

Why is Windows Insecure?

Consider the following quote for a minute:Securing an environment of Windows platforms from abuse - external or internal - is akin to trying to install sprinklers in a fireworks factory where smoking...

View Article

Cup of Hot Cocoa: Patch Warfare

Back in the day...In the PC world patches where a rare thing. You purchased a program and then when the next version came out you either upgraded or didn't end of story.As programs became more complex...

View Article

Cup of Hot Cocoa: Patch Warfare II

What to do?FirstEither update you machines religiously on every Black Tuesday (the second Tuesday of the month when Microsoft releases security patches). I don't trust Microsoft update. I have seen too...

View Article


Exploit Longevity

Ever notice how some exploits just seem to stay around forever?There is actually a simple, but in my opinion ugly, explanation for this. As usual an example can be worth a thousand words, and I’m going...

View Article

The Band-aid Approach

There was a comment posted asking why I was against the approach of shuffling buffers around in my post entitled Exploit Longevity...

View Article

Credit vs. Debit

Is a credit card better than a debit card, or vise-versa.In the US the credit card wins hands down, by federal law the credit card is responsible for fraudulent charges to your account. No such...

View Article


A Travel Cup of Hot Cocoa: Defense in depth

Everyone likes to keep their hot Cocoa hot. So travel mugs are insulated, and have a lid to help keep it hot. Yes it keeps it in the mug as well, but you can argue that keeping more in the mug helps...

View Article


Another Cup of Cocoa: Responsibility

MySpace, YouTube, Web 2.0 there is so much happening and available out there. It is all exciting and there are so many possibilities opening up.The freedom of the Internet and web works both ways. The...

View Article

Its a Cold Day on the Internet

No this is not an April fools joke.Once again the dark side has come out with a nasty, and this one is so bad that the Internet Storm Center (ISC) has raised the threat level to Yellow which ISC...

View Article

Malware the New Common Cold

Everyone has had a cold and everyone will continue to get colds. Science, and your doctor, have tried to eradicate the common cold, but to no avail.Why are we still saddled with the common cold. Lets...

View Article

Vista Smista & ANI Exploit

OK, I've gotten it out of my system. I'm not a fan of Vista I have two main issues in regards to Vista:The fact that Digital Rights Management (DRM) has some control over my system, and can degrade or...

View Article


The One, The Only, The Vulnerable Vista

Lets start this out by saying that Vista was designed to be more secure, and it appears to be headed in the right direction there. Just don't get me started on DRM.Once again Vista, the impenetrable,...

View Article

Licensed to SPAM by Uncle Sam

Shame on me after complaining about MS and their marketing hype, on the other had you can start sending SPAM to one of the lesser know TLA governmental agencies.Now getting serious the Securities and...

View Article


Out of the Mists of Antiquity...

The only way to really understand something is to go back to the beginning, and the dark side of the Internet is no different. Without light there can be no dark so that is where I'll start.In the...

View Article

The Dark Side

Now that I talked about the Internet culture in general in Out of the Mists of Antiquity... I will discuss the inevitable dark side,In the beginning there trust and sharing, but alas this was not...

View Article


Olympic Sized Ego

Picture this:Security Bozos are happy to welcome you to the 2012 Olympics. Please excuse us while we limit the size of your drinks, run you through bomb detection equipment, search your belongings and...

View Article

AOL Password Warning: Time to Change Your Password?

I try to avoid posting what everyone else is posting, but this case is special. Due to the number of AOL users I'm going to post this brief message and link to the original post.Brian Krebs posted...

View Article

Enemy of the State RFID Style?

The PlotBack in November of 1998 the movie Enemy of the State was released starring Will Smith as the harassed citizen that was tracked with every asset the government had including satellites. While I...

View Article

Videos

Who knows you better than your peers?It seems that there was a contest for university students to create videos to increase awareness of computer security among university students.The contest was...

View Article


Drive by What?

It used to be that that you could avoid certain types of sites and avoid most malware. Add a good antivirus software are you where pretty safe. Not any more just about any site can be used for...

View Article


Windows Please Phone Home!

I have talked about patching a few times.I have also discussed how I have found Microsoft Windows systems that where configured for automatic downloading of security patches, but where not patched in...

View Article

When Google isn't Google: Google-analytics Compromised

It has been reported the the popular Google Analytics has been compromised. The details are in the ISC Diary Entry titled Google Counter ... isn't.What this means to the average user is that any web...

View Article

Responsibility is Everyone's Job

The software developers constantly talk about responsible disclosure.Responsible disclosure is basically defined as informing the software developer of a vulnerability so that the vulnerability can be...

View Article

Browsing latest articles
Browse All 25 View Live




Latest Images