From The Blog
-
ConnectWise Slash and Grab Flaw Once Again Shows the Value of Input Validation We talk to Huntress About its Impact
Written by Sean KalinichAlthough the news of the infamous ConnectWise flaw which allowed for the creation of admin accounts is a bit cold, it still is one that…Written on Tuesday, 19 March 2024 12:44 in Security Talk Read 347 times Read more...
-
Social Manipulation as a Service – When the Bots on Twitter get their Check marks
Written by Sean KalinichWhen I started DecryptedTech it was to counter all the crap marketing I saw from component makers. I wanted to prove people with a clean…Written on Monday, 04 March 2024 16:17 in Editorials Read 1267 times Read more...
-
To Release or not to Release a PoC or OST That is the Question
Written by Sean KalinichThere is (and always has been) a debate about the ethics and impact of the release of Proof-of-Concept Exploit for an identified vulnerability and Open-Source…Written on Monday, 26 February 2024 13:05 in Security Talk Read 710 times Read more...
-
There was an Important Lesson Learned in the LockBit Takedown and it was Not About Threat Groups
Written by Sean KalinichIn what could be called a fantastic move, global law enforcement agencies attacked and took down LockBit’s infrastructure. The day of the event was filled…Written on Thursday, 22 February 2024 12:20 in Security Talk Read 684 times Read more...
-
NetSPI’s Offensive Security Offering Leverages Subject Matter Experts to Enhance Pen Testing
Written by Sean KalinichBlack Hat 2023 Las Vegas. The term offensive security has always been an interesting one for me. On the surface is brings to mind reaching…Written on Tuesday, 12 September 2023 17:05 in Security Talk Read 1904 times Read more...
-
Black Kite Looks to Offer a Better View of Risk in a Rapidly Changing Threat Landscape
Written by Sean KalinichBlack Hat 2023 – Las Vegas. Risk is an interesting subject and has many different meanings to many different people. For the most part Risk…Written on Tuesday, 12 September 2023 14:56 in Security Talk Read 1388 times Read more...
-
Microsoft Finally Reveals how they Believe a Consumer Signing Key was Stollen
Written by Sean KalinichIn May of 2023 a few sensitive accounts reported to Microsoft that their environments appeared to be compromised. Due to the nature of these accounts,…Written on Thursday, 07 September 2023 14:40 in Security Talk Read 1835 times Read more...
-
Mandiant Releases a Detailed Look at the Campaign Targeting Barracuda Email Security Gateways, I Take a Look at What this all Might Mean
Written by Sean KalinichThe recent attack that leveraged a 0-Day vulnerability to compromise a number of Barracuda Email Security Gateway appliances (physical and virtual, but not cloud) was…Written on Wednesday, 30 August 2023 16:09 in Security Talk Read 1597 times Read more...
-
Threat Groups Return to Targeting Developers in Recent Software Supply Chain Attacks
Written by Sean KalinichThere is a topic of conversation that really needs to be talked about in the open. It is the danger of developer systems (personal and…Written on Wednesday, 30 August 2023 13:29 in Security Talk Read 1605 times Read more...
Recent Comments
- Sean, this is a fantastic review of a beautiful game. I do agree with you… Written by Jacob 2023-05-19 14:17:50 Jedi Survivor – The Quick, Dirty, and Limited Spoilers Review
- Great post. Very interesting read but is the reality we are currently facing. Written by JP 2023-05-03 02:33:53 The Dangers of AI; I Think I Have Seen this Movie Before
- I was wondering if you have tested the microphone audio frequency for the Asus HS-1000W? Written by Maciej 2020-12-18 14:09:33 Asus HS-1000W wireless headset impresses us in the lab
- Thanks for review. I appreciate hearing from a real pro as opposed to the blogger… Written by Keith 2019-06-18 04:22:36 The Red Hydrogen One, Possibly One of the Most “misunderstood” Phones Out
- Have yet to see the real impact but in the consumer segment, ryzen series are… Written by sushant 2018-12-23 10:12:12 AMD’s 11-year journey to relevance gets an epic finish.
Most Read
- Microsoft Fail - Start Button Back in Windows 8.1 But No Start Menu Written on Thursday, 30 May 2013 15:33 in News Be the first to comment! Read 116251 times Read more...
- We take a look at the NETGEAR ProSafe WNDAP360 Dual-Band Wireless Access Point Written on Saturday, 07 April 2012 00:17 in Pro Storage and Networking Be the first to comment! Read 87095 times Read more...
- Synology DS1512+ Five-Bay NAS Performance Review Written on Tuesday, 12 June 2012 20:31 in Pro Storage and Networking Be the first to comment! Read 81633 times Read more...
- Gigabyte G1.Sniper M3 Design And Feature Review Written on Sunday, 19 August 2012 22:35 in Enthusiast Motherboards Be the first to comment! Read 79996 times Read more...
- The Asus P8Z77-M Pro Brings Exceptional Performance and Value to the Lab Written on Monday, 23 April 2012 13:02 in Consumer Motherboards Be the first to comment! Read 70411 times Read more...
Displaying items by tag: SOPA
Opertaion Global Blackout Would Have Happened Tomorrow; If It Were Real... Now What Did We Learn?
A while ago we wrote a piece that talked (in simple terms) about how Anonymous could kill the internet through attacking the root DNS servers. The article was written with the intent to give a background on the system in place and how it works. We did not then, nor do we now believe that Anonymous would take down the internet. As with all of the threats to take down twitter, Facebook and other forms of communication it would be exceptionally counterproductive. If Anonymous were to take down the internet and prevent connecting to servers via DNS it would lose many of their followers and supporters for at least the length of the hack.
The Internet Faces Serious Growing Pains as it Matures, But it Will Survive Even the Most Restrictive Law
Today is a busy day on the Internet (it usually is on a Monday morning). There are multiple articles and comments that are all related to the freedom of the Internet and how the world is evolving to embrace it while some in power are de-evolving to tray and restrict it. At this point there is no clear winner, but the sides are being firmly drawn in the sand and it is clear that things will get worse before they get better.
Anonymous and Occupy want to Occupy the Vote in 2012
In what has to be one of the most unusual “Get-The-Vote-Out” campaigns that I have personally seen it appears that Anonymous and the Occupy group are urging people to hold politicians accountable for their actions by voting them out of office. While some in the media are calling this a first it is not the in reality. In multiple messages Anonymous has called on the public to hold their political leaders accountable. Their methods might be different at times, but this is also the beginning of the voting season in the US so the move really comes as no surprise.
Google's stand on their new Privacy Policies brings an added danger...
The news has been buzzing with talk of Google’s new combined privacy policies and the impact they will have on the user’s personal information. This is due to the way that Google is moving to a combined user format and will allow for the sharing of user information between different platforms and services. Now, we agree that this is not a good thing and is something that Google needs to reverse their decision on, but there is something else at stake here. This is something that most publications have missed the boat on and one that I think even Google has not considered…
ACTA and other "Trade Agreements" seek to bypass laws and violate civil rights.
After both SOPA and PIPA were publicly shelved the US government did what it always does. It finds a way to do what it wants, but by hiding it in other bills or (as is becoming more common) using trade agreements to by-pass laws altogether. This is exactly what we are seeing with ACTA and TPP. These two trade agreements are probably some of the most dangerous bits of work that we have read about in a very long time.
Anonymous has a busy weekend
Anonymous had a rather big weekend starting off with taking down the CIA’s public website cia.gov. This was done through an interesting trick that appeared to be a combination of a DDoS and some DNS tinkering. On the day of the outage the CIA’s website resolved to 192.81.129.107 which when looked up showed as an address belonging to an IP pool in the UK. Once the attack was completed the site resolved to 192.81.129.130 which is undeniably part of the same range, but now shows as a US IP range. Looking at the evidence this could possibly be a new form of attack from the collective. Unfortunately we just do not have enough information on the subject to be sure and the CIA is not releasing any new information.
TOR launches new osbfproxy project to bypass censorship.
I love old sayings. One reason is that some are just plain funny, but another is that so many are true. In this case the old saying is “If you squeeze something too tight it will slip out between your fingers”. This is exactly what is happening with the tight internet controls that are being worked on right now. As Google, Twitter and others are working on hiding dissenting topics and tweets that governments do not want visible in their countries people like the TOR (The Onion Router) Project are working to get around those restrictions.
Are SOPA, PIPA, and others just paranoid reactions to how the Intenet was used in Egypt?
Lately there has been a large focus on the Internet and that it is becoming less of the open communications community that people believe that it should be. We have watched as laws like SOPA, PIPA, Open, ACTA and others have been proposed on the basis of protecting Intellectual Property. Because of the push to protect corporate interests it is often felt that the big entertainment companies are behind these laws. If the truth be told many of them are behind these laws, however we cannot remove responsibility from the government in these cases.
Fallout from the MegaUpload Takedown Starts to Hit
Unless you have been under a rock for the past few months you know that the big media companies have been pushing the copyright laws quite heavily. A pair of very dangerous laws call the Stop Online Piracy Act (SOPA) and the Protect IP Act (PIPA) were just dropped (for now) on after a very large Internet protest that ended up with many major sites blacking out for the day. We were also involved in that protest as the vague wording of the law was terrifying to say the least.
SOPA and PIPA threat moves into the shadows after MPAA threatens to pull campaign funding
One thing we have always prided ourselves on here at DecryptedTech is to look through the surface of issues at hand. Anything can be miss-read on the surface and taken the wrong way. We all are guilty of it, how many times have you gotten a question on a test wrong because you did not read it properly? I have done that more times that I care to count. However, it was this type of issue that has taught me to read between the lines and look beneath the PR and marketing that is shoved in the public’s faces every day.