What does your password say about you?
Using what we security experts call “crappy passwords” can be the first step in a journey to identity theft and…
E.U. software bug bounties for open source software 👍
Here is a great example of how international cooperation can make the Internet more secure for us all… the European…
Not all two factor authentication is created equal
Two factor authentication is an important security tool; by using 2FA, an attacker get ahold of your user name and…
Open S3 Buckets: From Bad to Worse
Just when you thought that the whole “globally readable Amazon S3 storage buckets” thing couldn’t get any worse, it did….
The (not paranoid enough) Android
The train wreck that is Android security continues… A new strain of malware by security firm Wandera found in China…
Beware of mobile number port out scams!
I spend a lot of time telling people to use two factor authentication on their important web accounts. This may…
The ultimate outsider threat?
I know I have been blathering on about insider threats lately, so let’s go to the other extreme – the…
Insiders on the outside
Homeland Security Magazine has a very interesting case study on an insider threat case involving DirecTV. In this case, the…
Jim Jeffries on US airport security
The rest of the world tends to look askance at the way that we here in the US handle airport…
Outsourced security program failure leads to $100K regulatory fine
Another reminder of the importance of managing third party vendor relationships… The Commodity Futures Trading Commission fined AMP Global Clearing…