An interesting article: http://nakedsecurity.sophos.com/2013/08/29/reality-tv-mother-of-eight-kate-gosselin-sues-husband-for-hacking-email-phone-revealing-private-info/ It certainly is true that we allow words to be misused / watered down / become too “catch-all”. But then we read this, where a person who broke into Sarah Palin’s email account by guessing the answer to her secret questions is described as a hacker: http://nakedsecurity.sophos.com/2010/11/12/sarah-palins-email-hacker-sentenced-to-366-days-in-custody/. The main difference between […]
This is sad:http://www.infosecblog.org/2013/08/closed/ I can understand how work policies and vendor sensitivities can make blogging awkward, if not impossible at times. I’ve faced the same challenge often enough myself. We are always having to balance getting information out there that is useful with trying not to embarrass the victims or clue the bad guys in […]
“Microsoft is aware of a public report that describes a known weakness in the Wi-Fi authentication protocol known as PEAP-MS-CHAPv2 (Protected Extensible Authentication Protocol with Microsoft Challenge Handshake Authentication Protocol version 2), used by Windows Phones for WPA2 wireless authentication. In vulnerable scenarios, an attacker who successfully exploited this issue could achieve information disclosure against […]
This is just a quick insight into how the spammers create all those flattering comments for our blogs. This is a comment that I saw in my queue a short while ago… click on the pic to see the full size view…
Go and get it guys – the compromise being addressed by this upgrade is being actively exploited. And PLEASE make sure you follow the instructions to scrub your existing install. http://forum.openx.org/index.php?showtopic=503521628
I’m not going to try to re-describe what has happened this time, because the article by Sophos is a most marvellously funny read. Read and enjoy here: http://nakedsecurity.sophos.com/2013/08/07/daily-mail-readers-wince-as-mail-online-slices-and-dices-their-data/ Yes, I know, privacy breaches are no laughing matter. I hope my readers forgive my mirth.
It is being reported that all downloads of OpenX adserver software since NOVEMBER 2012 have included a backdoor. Details here: http://blog.sucuri.net/2013/08/openx-org-compromised-and-downloads-injected-with-a-backdoor.html Please spread the word.
Have a read of this – very interesting: http://www.dkriesel.com/en/blog/2013/0802_xerox-workcentres_are_switching_written_numbers_when_scanning