From The Blog
-
NetSPI’s Offensive Security Offering Leverages Subject Matter Experts to Enhance Pen Testing
Written by Sean KalinichBlack Hat 2023 Las Vegas. The term offensive security has always been an interesting one for me. On the surface is brings to mind reaching…Written on Tuesday, 12 September 2023 17:05 in Security Talk Read 1226 times Read more...
-
Black Kite Looks to Offer a Better View of Risk in a Rapidly Changing Threat Landscape
Written by Sean KalinichBlack Hat 2023 – Las Vegas. Risk is an interesting subject and has many different meanings to many different people. For the most part Risk…Written on Tuesday, 12 September 2023 14:56 in Security Talk Read 736 times Read more...
-
Microsoft Finally Reveals how they Believe a Consumer Signing Key was Stollen
Written by Sean KalinichIn May of 2023 a few sensitive accounts reported to Microsoft that their environments appeared to be compromised. Due to the nature of these accounts,…Written on Thursday, 07 September 2023 14:40 in Security Talk Read 1111 times Read more...
-
Mandiant Releases a Detailed Look at the Campaign Targeting Barracuda Email Security Gateways, I Take a Look at What this all Might Mean
Written by Sean KalinichThe recent attack that leveraged a 0-Day vulnerability to compromise a number of Barracuda Email Security Gateway appliances (physical and virtual, but not cloud) was…Written on Wednesday, 30 August 2023 16:09 in Security Talk Read 904 times Read more...
-
Threat Groups Return to Targeting Developers in Recent Software Supply Chain Attacks
Written by Sean KalinichThere is a topic of conversation that really needs to be talked about in the open. It is the danger of developer systems (personal and…Written on Wednesday, 30 August 2023 13:29 in Security Talk Read 976 times Read more...
-
Leaked Data from Duolingo incident Shows US is most Impacted
Written by Sean KalinichDuolingo, is a language learning site (not to be confused with an LLM) and has a very large base of users. The site is a…Written on Tuesday, 29 August 2023 19:12 in Security Talk Read 1389 times Read more...
-
We talk about the Ransomware Threat Landscape with SecureWorks at Black Hat 2023
Written by Sean KalinichBlack Hat 2023 – Las Vegas, NV – One of my personal focuses is understanding the “Why” behind changes in the threat landscape. In simple…Written on Tuesday, 29 August 2023 18:26 in Security Talk Read 986 times Read more...
-
Now Patched Flaw Leverages Abandoned Reply URL found in Entra ID allows for Privilege Escalation
Written by Sean KalinichMicrosoft has not been having the greatest of months. First it was identified that a stollen MSA signing key was used by a Nation State…Written on Monday, 28 August 2023 15:39 in Security Talk Read 1605 times Read more...
-
Qrypt Looking to Attack the Inefficiencies in Quantum Encryption to make Quantum Secure Communication a Reality Today
Written by Sean KalinichBlack Hat 2023, Las Vegas – At Black Hat one of my favorite things to do is see what the latest buzzword(s)/phrases are. One of…Written on Monday, 28 August 2023 12:53 in Security Talk Read 1100 times Read more...
Recent Comments
- Sean, this is a fantastic review of a beautiful game. I do agree with you… Written by Jacob 2023-05-19 14:17:50 Jedi Survivor – The Quick, Dirty, and Limited Spoilers Review
- Great post. Very interesting read but is the reality we are currently facing. Written by JP 2023-05-03 02:33:53 The Dangers of AI; I Think I Have Seen this Movie Before
- I was wondering if you have tested the microphone audio frequency for the Asus HS-1000W? Written by Maciej 2020-12-18 14:09:33 Asus HS-1000W wireless headset impresses us in the lab
- Thanks for review. I appreciate hearing from a real pro as opposed to the blogger… Written by Keith 2019-06-18 04:22:36 The Red Hydrogen One, Possibly One of the Most “misunderstood” Phones Out
- Have yet to see the real impact but in the consumer segment, ryzen series are… Written by sushant 2018-12-23 10:12:12 AMD’s 11-year journey to relevance gets an epic finish.
Most Read
- Microsoft Fail - Start Button Back in Windows 8.1 But No Start Menu Written on Thursday, 30 May 2013 15:33 in News Be the first to comment! Read 115677 times Read more...
- We take a look at the NETGEAR ProSafe WNDAP360 Dual-Band Wireless Access Point Written on Saturday, 07 April 2012 00:17 in Pro Storage and Networking Be the first to comment! Read 85917 times Read more...
- Synology DS1512+ Five-Bay NAS Performance Review Written on Tuesday, 12 June 2012 20:31 in Pro Storage and Networking Be the first to comment! Read 80302 times Read more...
- Gigabyte G1.Sniper M3 Design And Feature Review Written on Sunday, 19 August 2012 22:35 in Enthusiast Motherboards Be the first to comment! Read 78999 times Read more...
- The Asus P8Z77-M Pro Brings Exceptional Performance and Value to the Lab Written on Monday, 23 April 2012 13:02 in Consumer Motherboards Be the first to comment! Read 69154 times Read more...
Displaying items by tag: EFF
Copy and Paste Can Get You Prison Time...
![]() |
It’s time we asked ourselves some basic questions. How far is too far? At what point do the efforts to protect our freedoms encroach on those very things? Some of you will recognize the name Barrett Brown. Mr. Brown is known in some circles as an activist. In others he’s elevated to the level of hero. Those in other areas see him as a threat, as an example of what should not be allowed to happen in today’s world of terror cells and the anonymous spread of… what exactly?
Microsoft Tries to Fight Back Against NSA Cooperation Claims
![]() |
Microsoft is taking great exception to the reports of their cooperation with the NSA. It seems they do not feel the reports that they have given encryption keys, created backdoors or unrestricted access to their servers is fair. Instead they are releasing some information in the hopes that they can prove they did not do anything wrong. Sadly, as is always the case, what they leave out of their statements is as important as what is in them and there is some fairly eye opening information in their actual statement.
Senator John Cornyn Plays Little Dutch Boy in the Flood of Patent Craziness
![]() |
What’s this??? A US Senator, John Cornyn (R-TX), is working to introduce a patent reform law that will help to limit the number of suits created by Patent Trolls. Called the “Patent Abuse Reduction Act of 2013” the bill looks to be a step in the right direction at least when considering Patent Holding companies. The problem is that this bill does little to stop or slow down filing obvious, vague, or patents covered by prior art which many of these suits stem from.
The Trans-Pacific Partnership Is Still a Threat to Basic Internet Rights
![]() |
It looks like the US wants to export something new to the world, now we are not talking about a technology. We are talking about our draconian copyright laws. You remember those nasty laws that the entertainment industry and software companies keep extending and expanding. For years our government has tried to be the police for these groups with laws like SOPA, PIPA Cyber Intelligence Sharing and Protection act and more. Well they are trying to force other countries to adopt these same rules and using trade agreements to do it. They have already been stopped once with ACTA (Anti-Counterfeiting Trade Agreement) when they tried to remove the rights of individual countries to establish their own laws and are at it again with the Trans Pacific Partnership.
Why Did the MPAA and US DoJ Go After Megaupload and What is Next?
![]() |
Over the last couple of days we have talked about the expected push from the copyright lobby for harsher laws and longer copyright periods (not to mention more control over the internet). This is a campaign that has been going on since the days of affordable internet (56kbps) and is one that will never really stop. However during this long battle there have been some highlights that make us all wonder at the motives and sanity of the key players involved. We are talking about the many domain seizures (for sites that are operating legally) and also some of the highly publicized threats that the MPAA (the leading group in this war) have made over the course of the last year.
Someone Should Tell the MPAA... Don't Poke The Bear
![]() |
There is an old (very old saying); “don’t poke the bear”. It is one of those saying that people toss out to remind us that there are some things that you should just not do. It is a saying that the gang over at the MPAA, RIAA, BSA and even members of the US Government should listen to (maybe we should tell them). Unfortunately for them they have not only poked the bear, but have kicked it too. This group of people is so out of touch with the way the world works that they actually think they can control technological progress. We are talking about the constant attempts to control the internet, communications and anything that travels over it; all in the name of maintaining a broken and outdated business model.
Drone Makers Try Out a Code of Conduct, But Will It Be Enough?
![]() |
Last week we published an article that highlighted the work of a group of students at the University of Texas led by Professor Todd Humphreys. During an impressive demonstration they were able to bring a commercial drone (the same type is also used by Law Enforcement) down by spoofing the GPS data sent to it during navigation. The flaw was found in just about any Drone that uses the civil GPS system (which also could apply to many other devices) and does not include encrypted GPS applications yet although the research did show that with the right equipment even encrypted GPS systems could be vulnerable.
Petition to Impeach Judge Lucy Koh Pops up at Change.org...
We have been critical of Judge Lucy Koh for seemingly biased views towards Apple in many of the patent cases that have crossed her bench. Most recently we were appalled to see her go from a stance of not enough evidence of irreparable harm to a full preliminary ban on sales of the Galaxy Tab. This has prompted more than one person to complain and also to question her ability to properly discharge her duties. Apparently more than a few people are feeling the same way as a petition to have her “impeached” and removed from her position.
The Electronic Fontier Foundation Wants to Scrap the Software Patent System
We have to say that with all of the non-profit organizations out there one of our favorite is the Electronic Frontier Foundation. They have been at the forefront of the battle for user data security, privacy and have fought many battles against the rather abusive (and redundant) copyright system. Now they are doing something very proactive instead of the more typical defense against the increasingly preposterous machine that makes up the corporate world.
New Proposed Amendment to CISPA Could Grant the US DHS More Power to "Monitor" the Internet
After working so very hard (and unsuccessfully) to convince everyone that CISPA (Cyber Intelligence Sharing and Protection Act) would not be like SOPA and that it is all good for everyone, it seems that the lawmakers involved in it just could not resist adding in a special little touch. There is an amendment to CISPA that would grant the Department of Homeland Security some brand new powers over all that data.