Category: worst practices

apple security fail leaves email attachments unprotected

One of the nice things about Apple’s iOS platform is the “hardware level encryption” that protects “all of the information on the device.”  At least,…

Continue Reading

how not to do a risk assessment

So, the risk management mavens for the City of Portland, Oregon have provided us all with an object lesson in how not to make risk…

Continue Reading

heartbleed forecast: continued heartburn

It seems like Heartbleed is going to be keeping  infosec people busy  for a while. First, multiple people have succeeded in extracting the private signing…

Continue Reading

more iPhone fingerprint issues

Another attack on the iPhone 5s TouchID sensor… a German security firm has claimed to be able to use an iPhone 4s camera to grab…

Continue Reading

thoughts on the iPhone fingerprint hack

We all knew this would happen, although I was a little bit surprised as to how quickly The Chaos Computer Club’s recent unveiling of a…

Continue Reading

japan cloud oopsie reveals confidential treaty data

A cautionary tale of cloud computing… apparently, a Google Groups group set up by the Japanese Ministry of the Environment to (internally) share documents and…

Continue Reading

creepy but effective belgian internet safety psa

Via Gizmodo

Continue Reading

NLRB continues push to regulate social media in non union companies

It seems that the National Labor Relations Board (NLRB) is continuing to extend its push into the regulation of social media in non unionized work…

Continue Reading

epic fail – hackers gonna hack… unless they don’t have to

Earlier this week, an Australian firm providing billing and support services to web hosting firms found that their web site had been destroyed, their Twitter…

Continue Reading

noted – the russian internet becomes more opaque

Interesting post from security and cyberwarfare blog Digital Dao on how changes in Russian law will make it more difficult for foreign firms and investigators…

Continue Reading