Wednesday, May 28th, 2008
I used to joke about the client that once told me their management mandated “double encryption” on all financial information after a breach. In their case, they were encrypting their database and backup tapes. Not that there isn’t a valid reason to encrypt databases and backup tapes, but the way ...
Posted in Security | No Comments
Wednesday, May 28th, 2008
Complexity is the enemy of security. Simple systems are inherently more secure than complex solutions. We see this idea validated again and again in security.
Unfortunately, our IT systems are getting more and more complex as we depend on technology to fuel business growth and innovation. But do we really need ...
Posted in General BS, Hardware, Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
Saturday, May 24th, 2008
We’re proud to announce: Ad-Aware 2008 Free, Plus, and Pro versions are now available.
While we continue to offer a full-powered anti-spyware solution that is free of charge for personal home use, with this new release, there’s more reason than ever to boost your defenses with our Plus or Pro products. ...
Posted in General BS, Internet, Privacy, Security | No Comments
Tuesday, May 20th, 2008
Developers of the Firefox browser are designing new technologies aimed at protecting users from some of the nastiest and most prevalent forms of website attacks.
One protection is designed to minimize end users' risk to cross-site scripting (XSS) attacks and cross-site request forgeries (CSRFs), both of which subvert basic internet security ...
Posted in Coding, Internet, Privacy, Security | No Comments
Monday, May 19th, 2008
We have been noticing quite a few binaries lately that target Brazilian banks. While most tend to have the same behavior, we found a particular piece that actually encrypted most of its strings to slow down analysis. In this blog we analyze the decryption routine and write a decryption algorithm, ...
Posted in Internet, Security | No Comments
