Reading Room
Curated by James Arlen.
- Can clouds ever be fully secure?Published: September 6, 2011Source: The RegisterCloud Security Alliance talks to El Reg Interview Computerised clouds are often similar to their water vapour-based counterparts; they're amorphous in the middle, and often fluffy around the edges. That can spe...
- Grad student translates iTunes Terms of Service into something more readablePublished: September 7, 2011Apple makes some beautiful products, doesn't it? From the second you unbox that new iDevice, to the moment when you plug it in to your perfectly engineered MacBook and open up iTunes with the great OS X op...
- Acas publishes first social media guidePublished: September 7, 2011Source: The RegisterUK workplace rulebook to save heartache and cash Acas has published a new guide to social networking in the workplace, which it says is the first in the UK. The employment body said the guide is aimed at helpin...
- GlobalSign stops issuing SSL certs, probes hacker claimsPublished: September 7, 2011Source: The RegisterBetter to do it and not need to than vice versa GlobalSign has suspended the publication of SSL certificates as a precaution in the wake of unverified claims by a hacker linked to attacks on Comodo and DigiNota...
- "Own Your Space--Keep Yourself and Your Stuff Safe Online" Digital Book for Teens by Linda McCarthyPublished: September 7, 2011Source: Microsoft Download CenterOwn Your Space was written by Linda McCarthy, for Internet savvy tweens teens, and their parents or educators.
- Incite 9/7/2011: Decisions, DecisionsPublished: September 7, 2011Source: Securosis HighlightsMaking decisions is very hard for most people. Not for me. The Boss and I constantly discuss a single issue over and over again as she debates all aspects of a big decision. I try to be patient, but patience is...
- Incite 9/7/2011: Decisions, DecisionsPublished: September 7, 2011Source: securosis.comMy Note: Goes without saying, Mike's got his finger on the pulse here...Making decisions is very hard for most people. Not for me. The Boss and I constantly discuss a single issue over and over again as she debates all aspects of a big decision. I try to be patient, but patience i...
- Rent Your Own BotnetPublished: September 6, 2011Source: SlashdotAn anonymous reader writes "New research shows that the TDSS/TDL-4 botnet, widely considered one of the largest and most sophisticated, can be rented via a Web storefront available to all comers. Researchers fr...
- 3-Star Book Review: Knapp’s New Industrial Network SecurityPublished: September 6, 2011Eric Knapp’s book Industrial Network Security shipped this month and is also available for the Kindle. It is a tough book to review because the quality and accuracy was very uneven. As compared to other ICS...
- Audit Report Shows Many Cracks in DigiNotar SecurityPublished: September 6, 2011A new report on the security of DigiNotar paints an ugly picture of the certificate authority's safeguards and network infrastructure, showing that the company had all of its CA servers on one Windows domain an...
- Microsoft updates Security Advisory 2607712Published: September 6, 2011Source: MSRCToday we’re updating Security Advisory 2607712, to announce that based on our investigation, we’ve deemed all DigiNotar certificates to be untrustworthy and have moved them to the Untrusted Certificate Stor...
- Evidence of Infected SCADA Systems Washes Up in Support ForumsPublished: September 6, 2011While security experts and lawmakers debate the seriousness of cyber threats to critical infrastructure, one security researcher says that evidence that viruses and spyware already have access to industrial co...
- A Professional ATM TheftPublished: September 2, 2011Source: Schneier on SecurityFidelity National Information Services Inc. (FIS) lost $13M to an ATM theft earlier this year: KrebsOnSecurity recently discovered previously undisclosed details of the successful escapade. According to sources...
- The Efficacy of Post-9/11 CounterterrorismPublished: September 2, 2011Source: Schneier on SecurityThis is an interesting article. The authors argue that the whole war-on-terror nonsense is useless -- that's not new -- but that the security establishment knows it doesn't work and abandoned many of the dracon...
- What You Need to Know About the DigiNotar HackPublished: September 2, 2011The disturbingly complete compromise of DigiNotar, the Dutch certificate authority, has broad ramifications for other CAs, enterprises and consumers who rely on the shaky web of trust that comprises the CA syst...
- More on Microsoft’s response to the DigiNotar compromisePublished: September 4, 2011Source: MSRCThis blog post was updated Sept. 5, 2011 below. Microsoft’s investigation into the scope and impact of the DigiNotar compromise has continued over the holiday weekend. We’ve now confirmed that spoofed certi...
- Leaks Show US Swayed Canada on Copyright BillPublished: September 4, 2011Source: OSNews"Secret U.S. government cables show a stunning willingness by senior Canadian officials to appease American demands (more here) for a U.S.-style copyright law here. The documents describe Canadian officials as...
- Rogue SSL Certs Were Issued for CIA, MI6, MossadPublished: September 5, 2011Source: OSNewsThe number of rogue SSL certificates issued by Dutch CA DigiNotar has balooned from one to a couple dozen to over 250 to 531 in just a few days. As Jacob Appelbaum of the Tor project shared the full list of the...
- Akamai Employee Attempts to Sell Trade Secrets to Israel, Pleads GuiltyPublished: August 31, 2011A Massachusetts man plead guilty on charges of foreign economic espionage on Tuesday after selling trade secrets from his former employer to an undercover FBI agent posing as an Israeli intelligence officer.rea...
- HFC Uganda: Going out of businessPublished: August 31, 2011Source: Hackers For CharityYep. That’s right. I’ve tried too hard to sustain our training center in Uganda by making money in Uganda, and it’s just not working. We’ve trained over 1,000 students. We’ve seen student go from no c...
- Kernel.org Attackers May Have Slipped UpPublished: September 1, 2011The attack that compromised some high-value servers belonging to kernel.org--but not the Linux kernel source code--may have been the work of hackers who simply got lucky and didn't realize the value of the serv...
- Belden/Hirschmann Buys Byres Security/TofinoPublished: September 1, 2011ICS specific security sales are still a very small market, but today probably the biggest player in that niche, Byres Security, was purchased by Belden. Byres’ Tofino firewall and related security technology...
- A History of the Hackerspace Movement, Circa 2008Published: August 31, 2011Source: MAKEIn 2008, an eternity ago in the hackerspace world, Bre Pettis, Astera Schneeweisz, and Jens Ohlig solicited entries from hackers around the world to create a book about hackerspaces. They’ve finally put it o...
- Substitute Teacher Sues Security Company for Stealing Her Nude Chat Pics [Crime]Published: August 31, 2011Source: GizmodoWe've seen creepy fools messing around with stolen laptops before. But what if you didn't know the laptop you were doing a striptease on was stolen? It would b...
- NZ Illegal Downloading Crackdown Law In EffectPublished: September 1, 2011Source: SlashdotFirst time accepted submitter sfranklin writes "As of Sept 1 at midnight, 'anyone caught downloading copyrighted content illegally could face fines of up to $15,000 and have their internet cut off' in New Zeala...
- FabFi: CNCed Wifi AntennaePublished: September 1, 2011Source: MAKEFabFi is an open-source, FabLab-grown system using common building materials and off-the-shelf electronics to transmit wireless ethernet signals across distances of up to several miles. With Fabfi, communities...
- The Most Cleverest Vacation Auto-Reply E-Mail I've Seen [Email]Published: September 1, 2011Source: GizmodoHow many times have you seen the generic vacation auto-reply e-mail that says "Hi, I'm going on vacation with limited access to e-mail and won't be able to res...
- How to get rid of DigiNotar digital certificates from OS X (Updated)Published: September 1, 2011Update 2: After a conversation with Seth Bromberger we have some new details. First, the reason you're unable to replicate this issue is that DigiNotar appears to have re-issued certificates. You can see S...
- Stanford Offering Free School of Engineering Courses this FallPublished: September 1, 2011Source: MAKEStanford School of Engineering is offering three classes this fall with open enrollment and free admission. The first is Introduction to Artificial Intelligence. It is taught by Peter Norvig, author of Artific...
- Toshiba's Wireless SD Goes Both Ways [Storage]Published: September 1, 2011Source: GizmodoWireless SD cards are a smart product for forgetful/lazy/busy people. Toshibas new FlashAir card is the first which allows you to transfer data both to and fr...
- Salesforce To Acquire Crypto ProviderPublished: August 26, 2011Source: InformationWeek Security NewsSaaS provider's purchase of Navajo Systems could help allay some cloud security skeptics' concerns, experts say.
- Black Hat: Google's Chrome OS Could Enable Nasty Web Based AttacksPublished: August 3, 2011HED: Three Ways that Google's Chrome OS Could Enable Really Nasty Web Based AttacksDEK: Researchers at the Black Hat Briefings conference in Las Vegas warn that Google's new Chrome Operating System could enable...
- Career talk at SpoofITPublished: March 8, 2009Source: hypatia dot caI gave a talk a few weeks ago at SpoofIT, the IT Security club at UOIT. I referred to a number of links and resources during the talk but haven’t had a chance until now to post a list of them. I’ve also...
- WPA Wordlist Download - 13GBPublished: December 13, 2010Looks like my wordlists got compiled into a large collection of wpa wordlists for download - well worth the bandwidth. =) Since it's a wpa wordlist, everything below 8 chars long was removed, which is bad for o...
- Book Review: The Personal MBAPublished: February 15, 2011Source: David SeahI’ve just finished my review of Josh Kaufman’s The Personal MBA, which joins my short list of foundational awesome books. I’d received an advance copy back in 2010, and had intended to review it earlier,...
- Shmoocon 2011Published: February 1, 2011Source: Hackers For Charity
- Reveal Passwords Bookmarklet Ensures You'll Never Get Locked Out of Your Accounts [Bookmarklets]Published: February 2, 2011Source: LifehackerWe've long been advocates of random password generators and autofillers like LastPass, but using them means you probably don't remember your passwords by heart...
- Arresting Officers Can Search Cell Phones On Scene, Using Tools such as AccessData’s MPE+™Published: January 7, 2011Source: Latest News from UlitzerThis week the California Supreme Court ruled that arresting officers, without a warrant, may search the contents of a cell phone taken from a suspect during arrest stating, “lawful custod...
- Are You Ready For the Digital Afterlife?Published: January 8, 2011Source: Slashdottheodp writes "Dave Winer's call for Future-Safe Archives goes mainstream in Rob Walker's NY Times Magazine cover story on how the Internet can provide a certain kind of immortality to those who are prepared. T...
- Cellphone snooping now easier and cheaper than everPublished: January 3, 2011Source: The RegisterBreaking GSM for $650 Cryptographers have devised a low-cost way to intercept phone calls and text messages sent over the majority of the world's mobile networks.…
- See all shared items
(Image used under CC from MorBCN)
Follow Liquidmatrix
Latest Comments