You have been living under a rock if you haven’t heard of the Turkish hack a couple of days ago. Basically – a Turkish hacker forum that bolsters a strong anti-Israeli attitude has been practicing hacking and mostly defacing Israeli sites for the past few months (years). Now, this is nothing new, and as I [...]
Posts Tagged ‘analysis’
How [not to] scam security people
An analysis of a rogue security tool that tries to steal passwords and scam people out of their paypal money and accounts.
Identity crisis
Here’s a common question I get asked a lot: “What technology should I use to secure my server/network/[some technology]?” The question is usually presented by someone who’s in charge of “Security” in an organization. Now, I wouldn’t have had a problem with this if this was a technician, or a pen-tester of sorts, but I [...]
Cyber[FUD]Fare – repost from fudsec.com
As promised – here is the “official” cross-post from my guest appearance on fudsec.com. Enjoy! I’ve been intravenously fed with FUD for as long as I’ve been in the business. The main strategy for understanding that you are facing FUD is to realize that there is a financial motivation behind the FUD-spreading entity. This has [...]
AHA! A blast from the past…
I just ran across this great blog post from Lori MacVittie at Web2.0 Journal. Can’t say exactly why it sparked my interest, but after reading it I realized this may be Freudian… The proposed Anonymous Human Authentication (AHA – great acronym Lori!) proposed in it closely resembles a technology we worked on back in the days [...]
Clouds, and the winds that blows them away…
You must have seen this coming – I was holding off from discussing cloud security for quite some time for a few good reasons, but now it’s time to take a look at where are we (or more correctly – are we there yet?). First things first – the main reason for abstaining from the [...]
Cyberwarfare and Cybercrime – more links turn out in study
Whenever you look at cybercrime/eCrime, the question always pops up – what is the link between this highly sofisticated economy and aggregation of technologies, with government affairs or cyberwarfare. The answer would usually be “it depends”… Actually depending on who you ask, and what level of involvement they have with studying cyberwarfare as well as [...]
Practical vs. Regulatory – the votes are in!
I was thinking about translating my recent article I wrote for the Israeli Insurance Association (see my last post), but decided to completely rewrite it so it would apply to a more general public rather than to the select few insurance industry professionals in Israel. The basic realm of what we are all doing on [...]
Hitting the nail on the head
When we here at the MCRC are publishing our quarterly trends reports (http://www.finjan.com/Content.aspx?id=827), we are always facing the possibility that what we have been working on and predicting that would become the next issue with web security, isn’t really going to happen. Fortunately, we keep getting great feedback from the community since we started the [...]