Eric's latest column

Ineffective intrusive powers

Canadian police are fighting an uphill battle. Their recent request for new legislation to compel people to disclose passwords and encryption keys demonstrates both desperation and lack of cybersecurity savvy.


Open source options

A good firewall, VPN, and log management solution are critical. Fortunately, there are excellent open source options available.

Effectively address insider threats

A layered defense strategy with technical, physical, and administrative controls can effectively address insider threats.

Poké Lessons

Game developers must be studying Pokémon GO as they contemplate future products. Here are some lessons learned from the game through the eyes of a security professional.

SC4 Hardware Security Module

Ron Garret is on a mission to make secure communications available to everyone. He expects the first production run of the SC4-HSM to be available ...

Opportunities for incremental improvement

Achieving the right level of security is challenging, especially when existing applications are involved. Sometimes perfect really is the enemy of the good enough.

You’re the product being sold

Pokémon Go, the location-based augmented reality mobile game developed by Niantic and published by The Pokémon Company, was released earlier this month in the United States and Sunday in Canada. But from a privacy perspective, it’s not all fun and games.

Security Experts Voice Fears About Election Result Accuracy, Integrity

Security experts say that a lot more needs to be done to verify and protect the integrity of election results in the 50 states. You ...

Blackhat wannabes proffer probably bogus Linux scamsomware

‘We nicked your files, pay us or we’ll leak,’ warns pastebin note A new purported ransomware variant is hitting Linux servers, deleting files and demanding ...

White House Orders Probe of Election Database Breaches

NEWS ANALYSIS: The White House has ordered a little-known intelligence committee to investigation suspected Russian hacks of the Democratic National Committee email system and state ...

L0phtCrack’s back! Crack hack app whacks Windows 10 trash hashes

PC Master Race rig? Get ready to crack passwords FIVE HUNDRED times faster! Ancient famed Windows cracker L0phtCrack has been updated after seven years, with ...

Autopsy of MedSec’s ‘hackable pacemaker’ bombshell report throws crash claim into doubt

No conclusive evidence of bricked devices, say uni experts Researchers at the University of Michigan (U-M) have poured doubt on one claim by MedSec that ...

The Dropbox data breach is a warning to update passwords

Recent data breaches underline the need for Internet users to regularly update the passwords for all their Internet accounts. On Wednesday, Spotify reset the passwords ...

More Cybersecurity News

Intruders Pilfered Over 68 Million Passwords In 2012 Dropbox Breach

But all passwords were hashed and salted and no evidence they have been misused, company says. You can read the full article here.

FBI director wants ‘adult conversation’ about backdooring encryption

How about f**k off, is that adult enough? James Comey, director of the FBI, has said he’s gathering evidence so that in 2017 he and ...

2016 DDoS Attack Trends By The Numbers

Some highlights from recent reports on DDoS attack activity. You can read the full article here.

More Than 40% Of Attacks Abuse SSL Encryption

New report shows risk of not inspecting encrypted packets. You can read the full article here.

Dropbox Breach From 2012 Exposes 68M Passwords

Dropbox claims it has contained the risk and is taking appropriate steps to protect users. You can read the full article here.

10 under-the-radar software products users love

Top mid-market software products G2 Crowd , an online platform hosting more than 100,000 user reviews, has shared its list of top mid-market software products ...

FTC Warns Travelers About Cybersecurity Risks Of Rental Cars

The Federal Trade Commission has recommendations for consumers to protect their personal data when driving rental vehicles. You can read the full article here.

SWIFT: More banks hacked; persistent, sophisticated threat is here to stay

Bad news for banks with lax security that also use SWIFT, the global financial transaction messaging network, as hackers are still pulling off high-tech heists. ...

Hack Brief: Four-Year-Old Dropbox Hack Exposed 68 Million People’s Data

Dropbox had a security “incident” in 2012, but the true scale and severity of that hack is only now coming to light. The post Hack ...

1,650lb 3D printed aircraft tool sets Guinness World Record

A 17.5 foot long, 5.5 foot wide and 1.5 foot tall the 3D printed aircraft design tool has earned the title of largest solid 3D ...

Ineffective intrusive powers

Canadian police are fighting an uphill battle. Their recent request for new legislation to compel people to disclose passwords and encryption keys demonstrates both desperation and lack of cybersecurity savvy.

Florida Man Pleads Guilty To Cell Phone Fraud Involving $1 Million

Edwin Fana compromised identifying data of victims and used them to conduct thousands of international calls. You can read the full article here.

St. Jude Says Muddy Waters, MedSec Video Shows Security Feature, Not Flaw

Feud between St. Jude Medical and Muddy Waters and MedSec continues with the former reiterating safety feature of its implantable devices. You can read the ...

Defense Department needs to embrace open source or military will lose tech superiority

The Department of Defense needs to move past open source myths that have been debunked and jump on the open source bandwagon or the DoD ...

How Not To Pay A Ransom: 3 Tips For Enterprise Security Pros

At the most basic level, organizations must understand their data, the entry points, and who has access. But don’t forget to keep your backup systems ...

Adobe patches critical vulnerability in ColdFusion application server

Adobe Systems released critical security patches for its ColdFusion application server, which has been a target for hackers in the past. The updates are available ...

Ransomware: Pay now or lose everything

When ransomware lands on your systems, your work life is likely to take a sudden and very precipitous nose dive. Between not being able to ...

Dropbox made you change your password because 68 million accounts were hacked

Dropbox’s move last week to ask users who had signed up before mid-2012 to change their account passwords followed the discovery of a large dump ...

Cybersecurity Self-Esteem: 4 Things Confident Teams Are Doing

By increasing our cybersecurity self-esteem, we can truly make a difference in raising our collective cybersecurity resiliency. You can read the full article here.

More Items »