Blog Post: Clearing the Confusion (Fast Track)
March 8th, 2010
6 March 2010
GoDaddy Has My Passwords?
February 24th, 2010
Securi Security has a post over on their site that describes a harrowing situation with a virtual server that they rented from GoDaddy.
Securi is a bit paranoid (aren't we all?) and moved secure shell from the default port of 22/tcp to an obscure port, and then placed a honeypot on 22/tcp (very smart).
One day he noticed these entries:
Jan 8
Forensics 1, Kingston 0
February 16th, 2010
Have you ever wondered how two similarly branded MicroSD cards can differ greatly in reliability? The truth is... not all cards are created alike - even if they have the same brand on the card.
I came across this brilliant bit of persistent forensic ...
AMEX and Passwords - Now With 128-bit Encryption!
February 11th, 2010
Dear American Express,
Does anyone actually proofread responses that your company sends to clients that have security concerns?
Let's look at what happened to Larry Seltzer of PC Magazine, shall we?
Larry complained that the password requirements for AMEX's site are drastically insufficient. Aye, they are. Take a look for yourself:
Larry politely wrote th
Larry politely wrote th You’re Certified! Wait, Maybe Not…
January 30th, 2010
As both a holder and a co-author of the first CompTIA Security+ Certification, I was recently alarmed to find out that CompTIA had very quietly posted an update regarding the renewal policy of their "+" series certifications.
"...effective January...
Lessons From A Stolen iPhone
January 27th, 2010
So you're in Mexico (Cabo San Lucas to be exact) and flying back to the USA. You send a reassuring text to a friend once you land letting them know that you'll be out of customs in 30 minutes and to show up on time at the north curb. You're nearly off the plane when you realize... WHERE IS MY iPHONE?
Such is the story of Mr. Sam, located <a href="http://iphonetheif.blogspot.com/2
Such is the story of Mr. Sam, located <a href="http://iphonetheif.blogspot.com/2 First IDN ccTLDs Requests Successfully Pass String Evaluation
January 21st, 2010
21 January 2010
Department of Defense Scholarship + Internship + Job!
January 12th, 2010
I'm always keeping an eye out for tremendous opportunities for my readers. This particular one should greatly interest those in the USA that want to study information security & assurance, intern for the Federal government, and then land a full time INFOSEC job.
A contact over at Capella University indicated that their current learners are eligible for the annual Department of Defense (DoD) Information Assurance Scholarship Program.
As part of a selec
2010: Security On A Diet
December 31st, 2009
With 2009 drawing to a quick close, security professionals are sharpening their pencils and pondering how to successfully complete their security mission in 2010 with a weak economy, tight budget constraints, and the ever increasing number of INFOSEC...
Uncle Sam Needs Security Pros NOW!
December 29th, 2009
I have received many queries regarding open positions within the US Department of Homeland Security -- specifically in the cyber warfare department.
Yes, it's true. They are serious! They are in dire need of staffing many positions within the departm...