Month: November 2015
-
Book review: Network Attacks and Exploitation: A Framework
Originally published in ZDnet. One chapter into the book Network Attacks and Exploitation: A Framework by Matthew Monte and I'd ordered a second copy to give to a friend. Three chapters in, and I thought it should be required reading for every reporter who covers an infosec story. Now that I've finished it, I think… Read more…
-
Ten great gifts for the hacker in your life
Originally published in ZDnet. 2015 The Year's Best Tech for Work and Play ZDNet takes a look back at very best tech stories and features of 2015. From the year's tech turkeys to products and services that get business done, we round up top gadgets, cloud highs, security lows — and much more. Holiday gift… Read more…
-
Zero Day Weekly: Xfinity doxing users, D-Link exposing networks, China's uncrackable smartphone
Originally published in ZDnet. Welcome to Zero Day's Week In Security, ZDNet's roundup of notable security news items for the week ending November 20, 2015. From CNET: On encryption, Clinton tells Silicon Valley to be a team player "Hillary Clinton wants Silicon Valley to stop being so obstinate. That's the message from the Democratic frontrunner… Read more…
-
Let's have an argument about encryption
Originally published in Engadget. A backdoor isn’t a privacy problem, it’s a security one. Government officials have been vexed for quite some time now that they can't surveil communications that use end-to-end encryption. Never mind that to crack encrypted platforms open for one spy would mean to open them up for all spies. Just being… Read more…
-
The Pentagon's plan to outsource lethal cyber-weapons
Originally published in Engadget. The Pentagon has quietly put out a call for vendors to bid on a contract to develop, execute and manage its new cyber weaponry and defense program. The scope of this nearly half-billion-dollar "help wanted" work order includes counterhacking, as well as developing and deploying lethal cyberattacks — sanctioned hacking expected… Read more…
-
Zero Day Weekly: Chrome for Android exploit, ransomware hijinks, the 'biggest breach ever'
Originally published in ZDnet. Picasa Welcome to Zero Day's Week In Security, ZDNet's roundup of notable security news items for the week ending November 12, 2015. From ZDNet: How F-Secure wants Sense to act as IoT watchdog for all your connected devices "Instead of installing a security app on each device, Sense from Finnish security… Read more…
-
'We take your security seriously'
Originally published in Engadget. Anyone who has even the slightest amount of contact with the internet is familiar with the scenario: An email or actual piece of mail arrives from a company who apparently handles some part of your connected life. The letter calmly identifies its author as a company you do business with, either… Read more…
-
Zero Day Weekly: New OPM cyber-advisor, FireEye revenue facepalm, ProtonMail attacked
Originally published in ZDnet. Welcome to Zero Day's Week In Security, ZDNet's roundup of notable security news items for the week ending November 6, 2015. From ZDNet: Hacker claims $1 million iOS 9 exploit bounty "Premium exploit platform Zerodium has announced the payout of a seven-figure prize to a team which has provided a remote… Read more…
-
The cyberpsychologist is in
Originally published in Engadget. My first session with a cyberpsychologist didn't go so well. She asked me to lay back on the couch, relax, and "think of cyber." "You know," she said, "what you do when you're angry." "Well, I don't really cyber when I'm angry-" She cut in, "Do you have penetration problems?" "No!"… Read more…