In the middle of March, RSA detected a cyber attack on its systems and found that information related to their SecurID two-factor authentication system had been taken. This information seems to be a "skeleton key" to the whole system and the hackers are using this information to take down organizations that use RSA SecurID. Some of these organizations include major US … [Read more...]
Adobe Issues Emergency Update For Flash Player
Adobe provided the following security bulletin this evening: An important vulnerability has been identified in Adobe Flash Player 10.3.181.16 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 10.3.185.22 and earlier versions for Android. This universal cross-site scripting vulnerability (CVE-2011-2107) could be used to take actions on a … [Read more...]
Android App FaceNiff is the “FireSheep for Android”
Using WiFi became a little more risky once FireSheep was introduced, a simplified way to snatch authentication info out of wireless packets, and a few big companies (Facebook, Twitter) responded by enabling HTTPS-by-default settings to mitigate the problem. The next incarnation of this threat has made its way to Android smartphones through an app called FaceNiff. FaceNiff is … [Read more...]
Lockheed Martin In The News: Thwarts Cyber Attack, Buys Quantum Computer
Lockheed Martin is in the news recently for two reasons: they recently detected and mitigated "a significant and tenacious attack" on its network a week ago and the company bought the first commercial quantum computer. Cyber Attack "As a result of the swift and deliberate actions taken to protect the network and increase IT security, our systems remain secure," Jennifer … [Read more...]
Book Review: Dissecting The Hack – The Forb1dd3n Network
Dissecting the Hack: The Forb1dd3n Network by Jason E. Street and Kent Nabors has been sitting on my night stand forever, just waiting for me to read it. I originally got it in the mail from the publisher in exchange for reprinting rights for my article on Helix. (That's right, 404 Tech Support has been cited in published work!) I'm finally getting to that review even though … [Read more...]