Browse Blog Posts by Tags

All Tags » Security (RSS)

Showing related tags and posts for the Blogs application. See all tags in the site

Passwords are here to stay

At least for the short to medium term. That is the, quite obvious, conclusion drawn in a Newsweek article entitled "Building a Better Password." The article goes inside the CyLab at Carnegie-Mellon University to understand how passwords may one day be replaced. It is interesting reading all...

Posted to Jesper's Blog by jesper on Sun, Oct 11 2009
Filed under: Filed under: Security
And finally, standard user malware

Today I finally got wind of my first piece of true standard user malware. MS Antispyware 2008 has turned standard user. The version in question installs the binaries in c:\documents and settings\all users\application data\<something>, and makes itself resident by infecting HKCU\...\Run. Curiously...

Posted to Jesper's Blog by jesper on Tue, Sep 1 2009
Filed under: Filed under: Security Pontification, Least Privilege, Security
Please do not e-mail my social security number

Recently I had a very interesting incident. I wrote an article some time in 2008 and the publisher paid me a little bit of money for it. That means the publisher must send a report to the Internal Revenue Service (IRS - the U.S. tax department) reporting that they paid me, as well as send me a form called...

Posted to Jesper's Blog by jesper on Tue, Jan 27 2009
Filed under: Filed under: Security Pontification, Security
Is MS08-067 Wormable?

A couple of weeks ago Microsoft released an out-of-band security update in bulletin MS08-067 . Looking at the type of vulnerability and the fact that the issue was already being exploited in the wild at the time, this was a good decision. If you have not already installed this security update, you should...

Posted to Jesper's Blog by jesper on Tue, Nov 4 2008
Filed under: Filed under: Security Pontification, Security, Thinking differently
Anatomy of a Hack 2008

A few years ago I delivered a very popular presentation I called "Anatomy of a Hack." Well, actually, I called it "How to Get Your Network Hacked in 10 Easy Steps" but the marketing department at my previous employer thought that title was a bit, edgy, so they renamed it. The Chinese...

Posted to Jesper's Blog by jesper on Fri, Aug 22 2008
Filed under: Filed under: Security, Thinking differently
Buy the original Olympic Torch from Beijing

"Buy the original Olympic Torch from Beijing" That was one of the fake headlines in the latest "CNN.com Daily Top 10" malware spam I've been getting lately. This particular spam is a fake newsfeed which redirects you to one of many sites. All the sites have the same thing in common...

Posted to Jesper's Blog by jesper on Fri, Aug 8 2008
Filed under: Filed under: Security
Phishing for a Tax Refund

What's wrong with this picture? If you answered "why would the IRS use a web server in Korea to ask for information about my tax refund" you are a winner! This is a phishing site preying on people who do not know that all you need to do to get your tax rebate is to file a tax return this...

Posted to Jesper's Blog by jesper on Sun, May 4 2008
Filed under: Filed under: Security
Mitigate the Image Uploader Vulnerabilities

The big security news this week is the six vulnerabilities found in various image uploader ActiveX controls. In case you haven't seen the news , there are exploits available publicly for remote vulnerabilities in five different ActiveX controls. US-CERT is offering the, relatively unhelpful, advice...

Posted to Jesper's Blog by jesper on Wed, Feb 6 2008
Filed under: Filed under: Windows Security, Security, Mitigations
Using Autoplay on Vista To Stop Attacks

The January issue of TechNet Magazine has an article I wrote about how to hack a system using autoplaying USB flash drives. While it is not possible to stop all attacks from USB tokens, Vista does include some interesting protective measures. However, the autoplay decision flow in Vista is quite convoluted...

Posted to Jesper's Blog by jesper on Sun, Dec 23 2007
Filed under: Filed under: Security, Running Windows, Windows Vista
Is Firefox More Secure than Internet Explorer?

Well, sure it is. According to the Firefox web site, which must of course be untainted by marketing claims since it is Mozilla, " Firefox continues to lead the way in online security". OK, marketing hyperbole aside, I'm a data guy. I care about what the data says. Fortunately, Jeff Jones...

Posted to Jesper's Blog by jesper on Fri, Nov 30 2007
Filed under: Filed under: Windows Security, Software Development, Security
What They Teach Kids These Days

Sweden has always been a little "cutting edge," if you know what I mean. Little did I know, however, just how cutting edge. This picture was snapped in a toy store in Stockholm last week: I probably stood there stunned for a good two minutes. Brio is known for high-quality wooden toys, particularly...

Posted to Jesper's Blog by jesper on Mon, Sep 3 2007
Filed under: Filed under: Security Pontification, Security
The Protocol Handler Saga Continues: Say What Secunia?

Sometimes you just have to wonder how far people will go to lend undeserved credibility to opinions. The Protocol Handler Saga is rapidly becoming a religious war. The latest entry is related to a very cool exploit that Billy Rios and Nate McFeters published on Tuesday. Unfortunately, he failed to give...

Posted to Jesper's Blog by jesper on Thu, Jul 26 2007
Filed under: Filed under: Security Pontification, Security
Hey, Mozilla: Quotes Are Not Legal in a URL

When I was a child, I learned a saying that I still find important to keep in mind: Those who are sitting in a glass house shall not throw stones The good folks at Mozilla may want to look up what that really means. Two days ago, Mozilla published Firefox version 2.0.0.5 to fix a security vulnerability...

Posted to Jesper's Blog by jesper on Sat, Jul 21 2007
Filed under: Filed under: Windows Security, Security Pontification, Security, Windows Vista
New Firefox Available

Mozilla has published a new Firefox. Version 2.0.0.5 fixes the FirefoxURL protocol handler issue by changing the calling convention for the protocol handler. Instead of the old calling convention: C:\\PROGRA~1\\MOZILL~2\\FIREFOX.EXE -url “%1″ -requestPending %1 is the string that urlmon.dll fills in...

Posted to Jesper's Blog by jesper on Thu, Jul 19 2007
Filed under: Filed under: Security
Blocking the Firefox -> IE 0-day

Thor Larholm, unhelpfully, published details on what he claims is a 0-day exploit for Internet Explorer (IE) yesterday. This exploit is actually for Firefox, but Thor exploited it by making IE launch Firefox. Firefox creates three protocol handlers. A protocol handler is essentially a mapping from an...

Posted to Jesper's Blog by jesper on Tue, Jul 10 2007
Filed under: Filed under: Windows Security, Security Pontification, Security

Page 1 of 2 (19 items) 1 2 Next >

All postings are copyright Jesper M. Johansson or Steve Riley, in the year they were made. These postings are provided "AS IS" with no warranties, and confer no rights. All postings are the sole opinions of Jesper M. Johansson or Steve Riley and do not reflect any official opinion of anyone else with whom the poster(s) are affiliated or has been affiliated in the past. Use of included code samples is permitted for non-commercial use, with no warranties of fitness express or implied. All use of any information or code snippets posted in this blog at the user's sole risk. The blog site would like to thank www.ownwebnow.com and www.exchangedefender.com for their support.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.

Recent Posts

Tags

Browse Blog Posts by Tags