Society
A company with an SQL injection name
- Albert Zenkoff
- 2017-01-19
- Society, attack, company, fun, prank, security, SQL injection
Finally, someone registered a company that is an SQL injection attack. We saw the license plates on cars doctored to execute SQL injection attacks but this is the first time, I think, that an attempt to crash all business SQL databases in a country is made. The company name is: ; DROP TABLE “COMPANIES”;– LTD ...
Read More
Don’t patch it, it’s fine?
- Albert Zenkoff
- 2016-11-17
- Society, application security, corporate, management, security strategy, society
I wrote back in 2013 about my shock at discovering that the companies are now publicly calling to stop the investment in security and avoid fixing security bugs in my article Brainwashing in security. There, we witnessed the head of Adobe security, Brad Arkin, tell us that the companies should not be wasting their precious ...
Read More
Data breach at LinkedIn
- Albert Zenkoff
- 2016-05-26
- Society, breach, break-in, data breach, database, hack, LinkedIn, passwords, stolen
Apparently, there was a serious data breach at LinkedIn and many customer records were stolen including “member email addresses, hashed passwords, and LinkedIn member IDs”. LinkedIn sent out a notification informing that the passwords were invalidated. What is interesting in the note is that they included a cryptic note that the break-in was “not new”. ...
Read More
Backdoors in encryption products
- Albert Zenkoff
- 2015-12-15
- Society, backdoor, crime, encryption, illegal, legal, prediction, problem, surveillance, unauthorized
After the recent terrorist attacks the governments are again pushing for more surveillance and the old debate on the necessity of the backdoors in encryption software raises its ugly head again. Leaving the surveillance question aside, let’s see, what does it mean to introduce backdoors to programs and how they can be harmful, especially when ...
Read More
Windows 10: catching up to Google?
- Albert Zenkoff
- 2015-09-01
- Society, browsing, history, keylogger, keystrokes, logger, privacy, sound, spying, video, violation, Windows
Windows 10 has turned out to be a very interesting update to the popular desktop operating system. Apparently, Microsoft envies Google for their success in spying on everyone and their dog through the Internet. Accordingly, Microsoft could not resist turning Windows into a mean spying machine. People were mightily surprised when all of the new ...
Read More
Continue the TrueCrypt discussion: Windows 10
- Albert Zenkoff
- 2015-08-21
- Society, bitlocker, data safety, disk encryption, truecrypt, Windows
I already pointed out previously that I do not see any alternative to the TrueCrypt for encrypting data on disk. TrueCrypt is the only tool that we can more or less trust so far. You will probably remember that Bruce Schneier recommended to use Windows encryption, the BitLocker, instead of TrueCrypt and I called that ...
Read More
TrueCrypt
- Albert Zenkoff
- 2015-06-16
- Society, disk encryption, encryption, tool, truecrypt, trust
Since the anonymous team behind TrueCrypt has left the building, security aware people were left wondering what’s next. I personally keep using TrueCrypt and as long as it works I will keep recommending it. Recently, Bruce Schneier has raised a few red flags by his strange advice that seems to indicate that he is being ...
Read More
GAO report on cybersecurity in Air Traffic Control is outright scary
- Albert Zenkoff
- 2015-04-17
- Society, aircraft, airplane, control system, FAA, firewall, GAO, in-flight, network, terror, terrorist attack, USA, vulnerability
The fact that the modern aircraft can be controlled from the ground is not widely publicized but known. There was though a lot of controversy, including among specialists, about how much of control could be intercepted by unauthorized 3rd parties. Well, now the extent of the problem is confirmed officially. The U.S. Government Accountability Office ...
Read More
Security Forum Hagenberg 2015
- Albert Zenkoff
- 2015-03-29
- Society, announcement, Austria, Hagenberg im Mühlkreis, human factor, philosophy, presentation, public, security, Security Forum, talk
I will be talking about the philosophy in engineering or the human factor in the development of secure software at the Security Forum in Hagenberg im Mühlkreis, Austria on 22nd of April. https://www.securityforum.at/en/ My talk will concentrate on the absence of a holistic, systemic approach in the current software development as a result of taking ...
Read More
Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone)
- Albert Zenkoff
- 2014-11-03
- Society, attacks, crypto, Cryptography, device, encryption, limitations, mobile, security, Sven Tuerpe, system
An excellent article by Sven Tuerpe argues that we pay excessive attention to the problems of encryption and insufficient – to the problems of system security. I wholeheartedly agree with that statement. Read the original article: Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone). Security cannot be based solely on the ...
Read MoreAbout the author
Albert Zenkoff
Managing corporate security in both technical and business sense in the context of long-term business strategy and sustainability.
For security consulting, training, certification and audit mail albert@aruberusan.com.
Share and stay updated
