ITsecurity
twitter facebook rss

ITsecurity Daily News: 09/01/2014

Posted by Kevin on September 1, 2014

The ITsecurity daily security briefing: Monday, September 1, 2014. If you find this security briefing useful, please spread the word via social media. If you have any comments or recommendations, please email kevtownsend at gmail dot com. News Papers/Reports WebThings Events M&A Alerts News Microsoft continues to defy the government On Friday, Judge Preska lifted […]

ITsecurity Daily News: 08/20/2014

Posted by Kevin on August 20, 2014

The ITsecurity daily security briefing: Wednesday, August 20, 2014. If you find this security briefing useful, please spread the word via social media. If you have any comments or recommendations, please email kevtownsend at gmail dot com. News Papers/Reports WebThings Events M&A Alerts News CHS Hacked via Heartbleed Vulnerability “The initial attack vector was through […]

Microsoft appeal against extraterritorial warrant dismissed

Posted by Kevin on August 2, 2014

Last week Judge Preska dismissed Microsoft’s attempt to quash a government warrant demanding a customer’s email content that is stored on a server located in Ireland. Microsoft’s argument is that US warrants do not extend extraterritorially, and that if the government seeks data from foreign nationals in a foreign state, it should use international law […]

Black hats now concentrate on zero-day exploits

Posted by Kevin on July 17, 2014

Microsoft has examined the first exploitation of known vulnerabilities in its products over the last eight years. It finds that exploits peaked in 2010 with just under 70 exploits; but has reduced dramatically since then to just 20 in 2013. It separated the exploits into three categories: zero-day, exploits, exploits appearing within 30 days of […]

Microsoft condemns the innocent to catch the guilty

Posted by Kevin on July 11, 2014

With great power comes great responsibility. Last week Microsoft exercised the former without practicing the latter: it demonized an innocent company and millions of innocent users to catch two criminals. The ends were good; but the means were not justified. Back in June it obtained an ex parte court ruling that allowed it to take […]

Nadella’s vision for a future Microsoft world

Posted by Kevin on July 11, 2014

When a company starts to die, it has to be reinvented. It cannot just do the old things better, or faster or cheaper. It has to do new things that lead the current world rather improve the old things that belong to the old world in which it was born. “Our industry does not respect […]

Support Scams and Developer Data Harvesting: is there a Connection?

Posted by David Harley on June 23, 2014

Richard Hay tells us that a cold-caller ostensibly from the DVLUP programme may actually be hoping to harvest some sensitive personal data. Is this human trojan horse from the same stable as tech support scams?

Out of band ’emergency’ patch issued by Microsoft

Posted by Kevin on June 19, 2014

Microsoft issued a patch this Tuesday. This is not Patch Tuesday week — so by definition, this was an emergency patch. But if you read the advisory, it doesn’t sound that urgent. The vulnerability could lead to a denial of service attack. In the collective consciousness, DoS is considered an inconvenience (of varying severity) rather […]

Microsoft Vs the US government

Posted by Kevin on June 16, 2014

Microsoft’s case to prevent the United States government from using search warrants to demand data that is not stored in the United States has picked up a number of high-profile backers, including the Electronic Frontier Foundation, Verizon, AT&T, and, recently, Apple and Cisco. Tech Giants Join Microsoft In Calling For US Gov To End Use […]

The tech giants’ letter to the Senate is just a load of fluff

Posted by Kevin on June 6, 2014

Nine US tech giants have written to the Senate requesting that the watered down Freedom Act be returned to its original strength. The Freedom Act’s original purpose was to curb the excesses of the NSA; but it was so weakened in its passage through the House of Representatives that many of its original supporters voted […]