July 29, 2009 9:08 PM
Posted by: Ken Harthun
Embedded systems,
Exploits,
Firewalls,
Hacking,
insecure,
Remote Code Execution,
Security,
Security management,
Storage,
VulnerabilitiesI don’t know how many times I’ve told people that the embedded management interface on most devices is a security breach waiting to happen. I just got wind of some news, but can’t seem to find anything more than this mention. As soon as I dig up some details, I’ll let you know. This...
July 17, 2009 2:32 PM
Posted by: Ken Harthun
Anti-malware,
Anti-virus,
Fun stuff,
Secure Computing,
Security,
Security managementWhen I turned on my laptop this morning, I was greeted with a red X on the Panda icon in my system tray. When I clicked on it, the program informed me that my beta version would expire in 10 days and I should download the latest release. I was ready for a sales pitch; I’m happy to say there...
May 29, 2009 1:59 AM
Posted by: Ken Harthun
Cybercrime,
Identity Exposure Index,
Identity Theft,
Security,
Security managementA new, free service offered by ID Analytics, www.myidscore.com, validates my Identity Exposure Index concept I proposed last month (What’s Your Identity...
May 6, 2009 12:41 AM
Posted by: Ken Harthun
Hacking,
Security,
Security management,
Training and CertificationWithout a doubt, SANS offers some of the best and most trusted computer security training and certifications. Today, I was thrilled to find that they’re currently offering four free mini-courses. I already completed the Windows Intrusion Discovery course and started on Cyber...
April 30, 2009 8:01 PM
Posted by: Ken Harthun
Identity Exposure Index,
Identity Theft,
Security managementQuick: On a scale of 0 to 5 (0 being nearly invisible, 5 being at risk), how much of your identity is exposed on the Internet? If you're wondering, there are some tests you can try that will give you a good idea of you Identity Exposure index (iEi). Here are the tests I performed and some...
April 29, 2009 12:33 AM
Posted by: Ken Harthun
Secure Computing,
Security,
Security management,
Security policy,
Security practiceMy last post on this subject discussed the 10 Immutable Laws of Security. This one takes the next step--also a Microsoft "archived" essay, but still relevant today. These are so self-evident that...
April 15, 2009 8:13 PM
Posted by: Ken Harthun
Secure Computing,
Security,
Security management,
Security policy,
Security practiceI search the web constantly for security-related news and content. One day last month, I came across a series of articles on TechNet buried in the archive. Microsoft prefaces the articles with this statement: "Archived content. No warranty is made as to...
March 31, 2009 12:48 AM
Posted by: Ken Harthun
Conficker,
Microsoft Windows,
Security,
Security bulletin,
Security management,
Vulnerabilities,
WormNo one knows for sure, but we do know that *something* is going to happen on April Fools' Day. Conficker is a new breed of malware; the people behind it are of exceptional intelligence....
March 27, 2009 5:32 PM
Posted by: Ken Harthun
Browsers,
Exploits,
Firefox,
NoScript,
Scripting,
Secure Computing,
Security,
Security management,
VulnerabilitiesGot NoScript? If not, get it--the latest Firefox bug, an XML tag remote memory corruption vulnerability released on Wednesday, is mitigated by having the NoScript addon installed.
The bug can be exploited by a malicious...
