Posted in Podcast.
– June 10, 2013
I once again fell victim to not having a plan “b”. And wanting to spend my Father’s Day yesterday with my kids watching a brainless, Summer fun movie. More the latter than the former.
At all events, I will be working to re-schedule the next time I can catch up with Dr. Pamela Gay, hopefully later this week. Regardless, I have a plan “b” for next week. Actually a couple of possibilities if the chat with Dr. Gay doesn’t happen in time for the necessary editing and mastering.
Also I am hoping I can find some time to pull together the first of two special episodes for Tweet the Debates that I mentioned in the show last week. I probably have two back-to-back nights of editing and recording, respectively, so expect something maybe latter half of this week.
Finally, if you absolutely cannot go a week without hearing my voice, the latest episode of my other podcast went out over the weekend.
Posted in General.
– June 17, 2013
- “Sophisticated Android Trojan” identified, The H Security
- Apple Store Vulnerable to XSS, threatpost
- IRC Botnet Leveraging Unpatched Plesk Vulnerability, threatpost
- BIND 9 patched against remote crash vuln, The Register
- iOS 7: Apple’s war against jailbreaking now makes perfect sense, ZDNet
- Microsoft FixIt Tool Blocks Java Attacks in IE, threatpost
- zPanel vulnerability permits root access to server, The H Open
- Unnamed, Popular ICS Firmware Contains Hard-Coded FTP Credential, threatpost
- Adobe, Microsoft Patch Flash, Windows, Krebs on Security
- Microsoft Patches IE Again; Ormandy Bug Waits, threatpost
- Content Security Policy 1.0 Lands In Firefox, Mozilla Security Blog
- June updates for Flash and Air close a critical hole, The H Security
- Microsoft doesn’t close all holes on June patch day, The H Security
- CyanogenMod is working on privacy mode for apps, The H Open
- iPhones can auto-connect to rogue Wi-Fi networks, researchers warn, Ars Technica
- Phishing attacks on Iranian Gmail users jump before Iranian election, Ars Technica
- Web Developer Security 1.0, Mozilla Security Blog
- Debian Says Remove Unofficial Debian-Multimedia.org Repository From Your Sources, Slashdot
- FDA to address hacking risk for medical devices, The Hill’s Healthwatch
- NSA gets early access to zero-day data from Microsoft, others, Ars Technica
- Adobe Flash exploit grabs video and audio, long after “fix”, Ars Technica
- Critical Java SE update due Tuesday fixes 40 flaws, The Register
- Thumb Your Nose at the NSA With Raspberry Pi, Gadget Lab at Wired.com
- OWASP top ten of web application security risks released, The H Developer
- Big browser builders scramble to fix cross-platform zero-day flaw, The Register
- Spikes Detected In Autorun Malware, Slashdot
Posted in Links, Security.
– June 17, 2013
- Spamhaus-style DDoS attacks: All the hackers are doing it, The Register
- Oracle sets out future Java security plans, The H Developer
- The Problems with Managing Privacy by Asking and Giving Consent, Schneier on Security
- Blind Federation criticises Captcha security test, BBC News
- Malware That Drains Your Bank Account Thriving on Facebook, NYTimes.com
- The secret to online safety: Lies, random characters, and a password manager, Ars Technica
- American Gets Targeted by Digital Spy Tool Sold to Foreign Governments, Threat Level at Wired.com
- The Security Risks of Unregulated Google Search, Schneier on Security
- VirusTotal detects social engineering in media files, The H Security
- Google Security Expert Finds, Publicly Discloses Windows Kernel Bug, Slashdot
- Why Wait for Congress? States Passing Electronic Privacy Legislation, Electronic Frontier Foundation
- Security update for Chrome 27, The H Open
- How Bitcoin Lets You Spy on Careless Companies, Wired Enterprise at Wired.com
- Apple releases Mac OS X 10.8.4, The H Security
- 2011 SCADA flaw finally fixed, The H Security
- Apache Struts gets another important security fix, The H Security
- Police admit they’re ‘stumped’ by mystery car thefts, TODAY.com via Slashdot
- More than 360,000 Apache websites imperiled by critical Plesk vulnerability (Updated), Ars Technica
- Smart TVs riddled with DUMB security holes, The Register
- Two-factor authentication: LinkedIn now on board, The H Security
- Google facial password patent aims to boost Android security, BBC News
- Fake Mt. Gox Pages Aim To Infect Bitcoin Users, Slashdot
- Five Bulletins, One Critical in Microsoft’s June Patch, threatpost
- Don’t Worry About Remembering That Password—Leave It to Your Unconscious, MIT Technology Review
- ISC Patches Known BIND 9 DoS Vulnerability, threatpost
- 1,462 botnets shut down by Microsoft, FBI and financial sector, The H Security
- Laws of Physics Say Quantum Cryptography Is Unhackable. It’s Not, Wired Science at Wired.com
- Behold, the world’s most sophisticated Android trojan, Ars Technica
Posted in Links, Security.
– June 9, 2013