Skip to main content

The WiKID Blog

Viewing posts tagged Information Security

ftp-and-two-factor-tutorial

We've published another how-to on Howtoforge: How to Secure VSFTP with SSL and Two-factor Authentication

gonzo-bankers-predict-the-end-of-online-banking

First, what a great site. Clearly, these guys agree with my philosphy that if you're not having fun, the money probably isn't worth it:


  • We are not the folks who borrow your watch to tell you what time it is - instead, we simply peer over at your wrist when you're not looking.
  • We never use silly words like "paradigm" and "mission statement" - we prefer more pragmatic terms like "revolutionary mental model" and "envisioned future state."
  • google-looks-to-protect-its-business-with

    I think Google's purchase of GreenBorder is very intersting. It shows that they see the threat that malware has to the online commerce and that they intend to do something about it. What's not clear is whether this acquisition was done with the goal of protecting payment processing (Google CheckOut) or whether it is meant to shore up security around their office application suite and their new offline access system Google Gears. Perhaps, Google is smart enough to know that both need additional security and is organized in such a way to make it happen.

    healthcare-consultant-shuts-down-due-to-insecure

    From Dark reading via Slashdot.

    While reports of the breaches have been issued in dribs and drabs, all of the data losses can now be attributed to a single incident, in which Verus employees left a firewall down following the transfer of data from one server to another, according to David Levin, vice president of marketing at MedSeek.
    MedSeek is picking up a lot of business from Verus Inc., which shut down after investors pulled the plug when affected hospitals terminated their contracts.
    While reports of the breaches have been issued in dribs and drabs, all of the data losses can now be attributed to a single incident, in which Verus employees left a firewall down following the transfer of data from one server to another, according to David Levin, vice president of marketing at MedSeek.
    This seems hard to believe, since the reported breaches run from June 4th through today. Perhaps Versus didn't notify all their customers at the same time? But they shut down "eight to 10 weeks ago".

    highly-highly-targeted-attacks-against

    I've blogged in the past about targeted phishing attacks and Alex Eckelberry has analyzed a particularly nasty example.. According to the Register the scam is highly targeted:

    the BBB scam is narrowly targeted and is aimed at those who are likely to have the most sensitive information to lose. No more than one executive of a company is targeted, and the email goes to great lengths to get the names of the exec and the exec's company correct.
    What's not clear is whether the attackers are trying to get corporate information from an executive's PC or just personal information from high-value targets. More than likely the answer is both

    Recent Posts

    Archive

    2019
    2018
    2017
    2016
    2015
    2014
    2013
    2012
    2011
    2010
    2009
    2008

    Categories

    Tags

    Authors

    Feeds

    RSS / Atom