Skip to main content

The WiKID Blog

Viewing posts tagged Authentication Attacks

zone-h-attack-really-a-dns-hijacking

According to the Register the recent 'defacement' of Zone-H was really a DNS hijacking. While it is not clear how the attackers took control of the domain, it points out the DNS system is not a reliable security mechanism. It is less likely that an attacker would get contorl of a major financial institution's DNS registration (or is it?), but DNS-cache poisoning is very likely.

vint-cerf-et-al-on-internet-security

I had the pleasure to attend the recent security summit at the Georgia Tech Information Security Center (webcast is available, but only if you have quicktime and IE7 apparently, which ain't me) and getting to hear Vint Cerf and a very strong group of panelists. Here are my take-aways:

  • When you sell your company for big bucks, you get to be on panels at colleges. Maybe this is because the event was held in the Chris Klaus building.
  • The internet needs better, stronger authentication - and not just the user, but better Damballa a local Atlanta start-up spun out of Georgia Tech to help ISPs address the bot problem. Good luck to those guys. Seems like cool technology.

flaw-in-mail-list-compromises-password-file

There are a number of things that make passwords increasingly unusable. One of the biggest problems with passwords is that you're supposed to use different ones for different systems. It's a no-no to use the same password in multiple places because if one gets compromised, then the other systems are compromised.

follow-up-on-t-mobile-security

So this weekend, the blog started getting a ton of hits from google searches for "Paris Hitlon T-moble hacked SideKick" etc. I couldn't figure out why the big rush all the sudden until I read the Register this a.m..

one-time-passwords-and-credit-cards

I am so confused about this piece of advice from Garner's Avivah Litan:

Recent Posts

Archive

2022
2021
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008

Categories

Tags

Authors

Feeds

RSS / Atom