twitter facebook rss

Researchers play Whack-a-Mole with Google Password Alert

Posted by Kevin on May 3, 2015

Phishing is a huge problem with no indication of any solution (see, for example, Phishing: detection and prevention). Last week Google attempted to alleviate the issue with the release of a Chrome extension: Password Alert. If you end up on a phishing page that asks you to enter your Google password, the extension pops up […]

Black hats now concentrate on zero-day exploits

Posted by Kevin on July 17, 2014

Microsoft has examined the first exploitation of known vulnerabilities in its products over the last eight years. It finds that exploits peaked in 2010 with just under 70 exploits; but has reduced dramatically since then to just 20 in 2013. It separated the exploits into three categories: zero-day, exploits, exploits appearing within 30 days of […]

Of irony and petards

Posted by Kevin on June 18, 2014

Says it all without comment – but I must make one: I think 122 hours to find an unknown vulnerability is pretty good going.