Click here to listen/download (10:06). Matt Buckley returns from Nice, France, where he attended RSA Conference Europe. He had the opportunity to speak with keynoter Simon Singh as well as security blogger Bruce Schneier. Paul Joyal also reports on Q3 EMC earnings which were released last week. Related Links: EMC Reports Third Quarter Results (Press Release) RSA...
Read more »

I wonder if you ever heard about RFID. It is a technology in which data can de transferred wirelessly from a tag or a transponder, allowing passive or active identification of a device. The amount of possible implementations of the technology is HUGE. From inventory control, facilitating tracking and logistics, to automatic tellers in...
Read more »

This morning I found this interesting offer by Google. It’s more convenient and powerful than the old Writely. Moreover, it provide me a way to write my blog at wordpress.com. I can communicate with my friends worldwide. It’s great !
Read more »

Once again, before Vista even ships, PatchGuard has been hacked, proving again that relying on Microsoft and only Microsoft to protect users of the x64 versions of Windows Vista is just flat out not going to work. As I have noted in this blog before, this is like putting the same lock on all doors...
Read more »

Customer accounts at online brokers including ETrade Financial Corp. and TD Ameritrade Holding Corp. have been infiltrated by computer hackers in one of the biggest cases of identity theft to strike the U.S. securities industry. The FBI, the Securities and Exchange Commission and the NASD are trying to unravel the fraud, which has cost New...
Read more »

Sunbelt’s Alex Eckbelberry has come up with another interesting angle on the Microsoft Kernel Patch Protection (KPP) issue. What happens to x64 users when a new and unknown threat comes along (as happens all too frequently these days)? As Alex says, “PatchGuard creates a barrier to the kernel, against which security vendors (the major defensive...
Read more »

An article by Joris Evers on News.com earlier this month, indicated that the answer to this question might be a ‘yes’, per the security experts” that were quoted in the article. One of those experts, a doctoral student at the Royal Institute of Technology in Sweden, was quoted as saying that “users should...
Read more »

Yesterday Alex Eckelberry, CEO of fellow third-party Windows security vendor, Sunbelt Software, posted an interesting example of how Microsoft uses trademarks it does not own in its online advertising. In this particular example, Microsoft uses “Webroot” and “SpySweeper” as keywords in a Google AdWords campaign to target users looking for security software. “Webroot” and “SpySweeper”...
Read more »

Sometimes I need to know if the current instruction sequence belongs to a loop or not. If it does, I’d like to know the loop boundaries. It would be nice to have the current loop highlighted. If the highlight changes as I navigate in the listing, it would be just great. Original post by Security Wonk and software...
Read more »

“The new ‘features’ this time are primarily performance improvements possible due to the use of better algorithms (bringing more inherent parallelism of trying multiple candidate passwords down to processor instruction level), better optimized code, and new hardware capabilities (such as AltiVec available on PowerPC G4 and G5 processors). In particular, John the Ripper 1.7...
Read more »

I ran across this on the Microsoft support site: If you log on to an MIT realm, press CTRL+ALT+DELETE, click Change Password, type your existing MIT password, and then type a new, simple password that does not pass the dictionary check in Kadmind, you may receive the following error message: Your password must be at...
Read more »

Like many Internet security vendors, we’ve been closely watching Microsoft’s latest actions with regard to Kernel Patch Protection (KPP). It’s our conclusion (and no doubt the same conclusion has been reached by many other vendors), that Microsoft’s promise to release its API will have little or no effect on a situation some security experts...
Read more »