Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “Any reliance on a generic scanning tool as your primary security control is nothing more than a false sense of security and a disaster waiting to happen. ” – Michael Coates “Instead of asking why Gawker leaked all those …

Category Index   Hacking Incidents / Cybercrime Unpatched Vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Mobile Security Cryptography / Encryption Privacy General Tools Funny Hacking Incidents / Cybercrime   The Real Lessons Of Gawker’s Security Mess  [blogs.forbes.com] Gossip site Gawker has experienced a large data breach whose scale fully came to light …

Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “Porting all those security fixes in PHP 5 back to PHP 4.4.9 is a PITA” – Steffan Esser (Still using PHP 4? Good luck!) “Criticizing WAF tech is so “2009” – AppSec is so difficult, you need to use …

Category Index Hacking Incidents / Cybercrime Software Updates Business Case for Security Web Technologies Network Security Database Security Mobile Security Privacy Cloud Security Tools General Funny Hacking Incidents / Cybercrime WikiLeaks backers hit MasterCard and Visa in cyberstrike  [www.reuters.com] Credit card giants MasterCard and Visa came under intense cyber attack on Wednesday as supporters of …

Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “OWASP top 10 is in danger of becoming the pci of the app layer. it’s not enough” – Gal Shpantzer “Remember deceivers tend to actually engage in greater eye contact not less. The myth of looking away to lie …

Category Index  Hacking Incidents / Cybercrime Unpatched Vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Mobile Security Privacy Censorship Tools General Outrageous Funny Hacking Incidents / Cybercrime   Web-Based Malware Infections Reached Over 1.2 Million in Q3-2010  [www.spamfighter.com] According to a recent study by the security firm Dasient, the number of malware …

Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “Real security is built, not bought.” – Richard Bejtlich “Can’t believe in 2010 many web devs still tell prospective client that security is additional cost, add-on or on request only.” – Drazen Drazic “If you try to limit access …

Category Index  Hacking Incidents / Cybercrime Unpatched Vulnerabilities Software Updates Business Case For Security Web Technologies Network Security Cloud Security Mobile Security Privacy Cryptography / Encryption Social Engineering Tools General Funny Hacking Incidents / Cybercrime   WikiLeaked Diplomatic Cables Confirm China’s Politburo Was Behind Google Hacking Incident [techcrunch.com] Details about the U.S. State Department cables obtained …

Feedback and/or contributions to make this better are appreciated and welcome.  Highlighted quotes of the week: “Technology alone will not protect you from the insider threat” – Pat Kirwan (at IRISSCON) “Allocating security investments based upon asset valuation sounds like a good idea, and indeed it is. But doing so is difficult because when CFOs …

Category Index  Hacking Incidents / Cybercrime Unpatched Vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Cloud Security Privacy Tools Mobile Security General Funny Hacking Incidents / Cybercrime   Man loses millions in computer virus-related scam [www.net-security.org] A US court has heard that a couple conned at least $6 million from the great-grandson of …