Category: worst practices

your passcode can take the fifth, but not your finger

Now, here is a head scratcher… a circuit court in Virginia has ruled that while law enforcement cannot force you to reveal the passcode for…

Continue Reading

hacking wifi via lightbulbs?

While the “Internet of Things” has great potential, it also opens up new attack surfaces for those with nefarious intent to exploit.  A good example of…

Continue Reading

so… about that hedge fund hacking story…

  An update on the “hedge fund hacking” story from a couple of weeks ago… it appears that this attack (in which it was alleged…

Continue Reading

apple security fail leaves email attachments unprotected

One of the nice things about Apple’s iOS platform is the “hardware level encryption” that protects “all of the information on the device.”  At least,…

Continue Reading

how not to do a risk assessment

So, the risk management mavens for the City of Portland, Oregon have provided us all with an object lesson in how not to make risk…

Continue Reading

heartbleed forecast: continued heartburn

It seems like Heartbleed is going to be keeping  infosec people busy  for a while. First, multiple people have succeeded in extracting the private signing…

Continue Reading

more iPhone fingerprint issues

Another attack on the iPhone 5s TouchID sensor… a German security firm has claimed to be able to use an iPhone 4s camera to grab…

Continue Reading

thoughts on the iPhone fingerprint hack

We all knew this would happen, although I was a little bit surprised as to how quickly The Chaos Computer Club’s recent unveiling of a…

Continue Reading

japan cloud oopsie reveals confidential treaty data

A cautionary tale of cloud computing… apparently, a Google Groups group set up by the Japanese Ministry of the Environment to (internally) share documents and…

Continue Reading

creepy but effective belgian internet safety psa

Via Gizmodo

Continue Reading