twitter facebook rss

Dropbox waits almost six months to fix a flaw that probably took less than a day

Posted by Kevin on May 7, 2014

Graham Cluley is a much respected security expert – but we don’t always agree. Full disclosure – the early public disclosure of a vulnerability whether or not the vendor has a fix available – is an example. I believe that vendors should be notified when a flaw is discovered, and then given 7 days to […]

Don’t let them pull the Aircloak over our eyes

Posted by Kevin on May 4, 2014

Big business wants our personal information so it can make even more money. Privacy laws say it cannot have our personal data, but do not define anonymized data as ‘personal’. Business-friendly privacy regulators, such as the UK’s Information Commissioner, specifically declare that anonymized personal data is not regulated by the data protection laws — and […]

MS issues out-of-band patch as IE attacks increase

Posted by Kevin on May 3, 2014

FireEye reported last week (26 Apr 2014) on a newly discovered Internet Explorer vulnerability that is already being exploited in the wild. The vulnerability affects all IE versions from 6 through 11; but was at the time only being exploited in version 9-11 in Win 7 and 8. Two things have since happened. Firstly the […]

The FBI’s war on Anonymous

Posted by Kevin on May 1, 2014

The FBI announced yesterday “additional attempted computer hacking charges and 18 counts of cyberstalking” for Fidel Salinas. That now brings the total charges to 44 – each of which carries a maximum of 10 years in prison. This alleged hacker is now facing 440 years in prison. According to the allegations, between December 23-29, 2011, […]

My willy is bigger than yours

Posted by Kevin on April 30, 2014

I got an email yesterday (29 April 2014). It said: Today the Websense Security Labs found a new vulnerability in Microsoft Internet Explorer which affects Internet Explorer versions 6 through 11. However, current reported attacks are targeting Explorer 9 through 11. The Labs have issued a blog post which outlines solutions for those who have […]

US magistrate makes Schengen internet more likely

Posted by Kevin on April 29, 2014

Microsoft could either see the Schengen Cloud coming or was privy to politicians’ thoughts. In January this year it announced that it would allow European customers to keep their data on servers within Europe. This followed a blog by legal counsel Brad Smith in December 2013 that voiced concern over US surveillance: And we’ll assert available […]

New head of GCHQ is a diplomat

Posted by Kevin on April 28, 2014

The new head of GCHQ is neither a spy by trade nor a hard-hitting political bully — he is a diplomat. Robert Hannigan, selected to replace Sir Iain Lobban, as head of Britain’s spy agency GCHQ comes out of the Foreign Office and is a former adviser to Tony Blair in Northern Ireland. Ex-colleagues say […]

A RAT is not a RAT when a remote access tool is a remote access trojan

Posted by Kevin on April 28, 2014

Remote Access Trojans (RATs) are a blight on the internet – they allow attackers to take complete control of the victim’s computer to do and steal what they wish. Remote Access Tools (RATs), however, are increasingly valuable to provide remote support to an increasingly distributed workforce. Which is which is not always clear. At the […]