Reddit is the hacking playground for today. While Reddit is just barely a "social network" with minor interactions between its members it is a powerful site for spreading the latest cool thing and in recent months has been pretty much taken over by Ron Paul enthusiasts and Fox News conspiracy theorists.
Richard Stiennon delivers a timely, succinct exploration of cyber threats, hack attacks, crime on the web, and information warfare.
At a SCADA conference in New Orleans this week we learn that there have been multiple instances of hackers attempting to extort municipalities with threats of power outages - and then carrying out the threats, in at least once instance taking out several cities(none in the US, so far).Need I say more?
Jaikumar Vijayan over at Computerworld has a great round up of "lessons learned" from the TJX break ins first announced a year ago today. To his five points listed below I would add a couple of observations.
Sean Hargrave over at the Guardian seems concerned about security research firms paying hackers for exploits before they are even reported to the responsible vendor. My reaction to this issue has been: "So what, big deal".
I am preparing my next road show pitch. My past presentations have followed a pattern.
The cyber sleuths at Fortinet have tracked down a malicious widget on Facebook. Read the advisory at the FortiGuard Center.
Google's social network, Orkut, has been attacked by a worm that uses "scrap book" messages to propogate. It's only action is to spread and add Orkut members to a group called "infected by the Orkut virus.
Until this morning I had no idea what my 500th blog post would be about. Should I once more rant about how security awareness training is not worth the cost of the posters?
I see that the US assistant secretary of the national cyber-security division of the Homeland Security Department addressed the New York City Metro InfraGard. His remarks are disturbing to me because the reflect a growing (continuing?
It had to happen. In this latest technique scammers hack into someone's email account and send emails to friends asking for money.
The New York Times is reporting that they obtained a copy of a report from US-CERT that attacks eminating from Chinese IP addresses successfully targeted employees of Oak Ridge National Laboratory in Tennessee. In addition to research in energy, nanotechnology and "isotope production", Oak Ridgeprovides federal, state and local government agencies and departments with technology and expertise to support national and homeland security needs.
It is that time of year again. Time to publish my predictions for 2008.
Backgound: Secondlife is a way cool immersive virtual world with millions of subscribers created by Linden Lab. It is a bit beyond the flat 2-D worlds of Myspace and Facebook.
I am traveling for the next two weeks. Today I write from the banks of the Thames in Marlow, England, a town that inspires writing if Jerome K.
I spend an inordinate amount of time on the road speaking at regional security conferences. Today I am at The West Coast Security Forum conference in Vancouver.