no more cubes

Tag: security

  • Your home router.

    If you don’t patch that device, somebody else may. Says Symantec.

  • Project Zero looks at Kaspersky.

    Google’s “Project Zero” took a look at Kaspersky’s products. The result is unpleasant, if not to say devastating.

    The closing statement is a constructive mention towards Antivirus products.

    In future, we would like to see antivirus unpackers, emulators and parsers sandboxed, not run with SYSTEM privileges.

  • Facebooks To Kill Flash

    Facebook’s new chief security officer, Alex Stamos, has stated publicly that he wants to see Adobe end Flash.

    Most of the internet will consider this a good idea. Not too sure about the Facebook bunch yet.

    via: Slashdot

  • Escaping VMware Workstation through COM1

    A bug in VMWare’s vprintproxy.exe process allows the guest OS to escape it’s environment through the COM1 serial port.

    via: Escaping VMware Workstation through COM1

  • Convenience Containers

    Containers, in particular represented through the hype around Docker, get a greater share of attention of the IT world for the past year or two. And it happens for good reason. Just like other virtualization techniques, containers allow for easier deployment, for better maintainability, for improved management of applications, for better hardware utilization and for a reduced TCO altogether. And cost in particular is likely the biggest reason for the popularity of container technology in the realm of virtualization, because lightweight technology does not only touch hardware and infrastructure, but also development and operations.

    Multicolored containers

    (more…)

  • Braucht jeder Hacker.

    Auch Cyber-Security braucht modische Cyber Accessoires.

     

    via: Schlecky Silberstein

  • Chip Fingerprinting Scheme Could Secure IoT Devices Against Malware

    Chip Fingerprinting Scheme Could Secure IoT Devices Against Malware.

    Security in the context of the Internet of Things (IoT) is an area that is expanding, along with the growth of IoT itself. Fingerprinting schemes are an approach that didn’t go along with malware prevention in traditional computing, but IoT use cases may benefit from a combination.

    via IEEE Spectrum.

  • Why Data Breaches Don’t Hurt Stock Prices

    Why Data Breaches Don’t Hurt Stock Prices.

    In short: because there is no reliable metric to make the impact transparent to shareholders and customers.

    via Harvar Business Review.

  • Docker security

    A quick overview.

    Docker security: making sure you get it right.

  • The magical security unicorn.

    The purpose of security software is to make other software more secure. This is what the security industry claims, sometime with legit arguments, sometime the industry tries to chase unrealistic ideals, as a recently linked article suggest.

    And I couldn’t agree more. The security industry approaches the problem from the wrong end, most of the time. With keeping in mind the principles of security, Integrity, Availability and Authenticity, security software helps mitigate threats in the class of Vulnerabilities, Exploits and malicious software and payloads. Products available to purchase can be considered in classes of, Encryption (Integrity and Authenticity), for data in rest (disk encryption, file encryption) or for data in transit (VPN or protocol encryption). Backup is clearly saving Availability, but most companies in the security industry consider this a different topic. Then there are products to limit access, e.g. Network Layer Firewalls, which have a very distinct functionality. Up to here, things are very clear and deterministic. When it comes to Application Layer Firewalling, e.g. Web Application Firewalls things start to get fuzzy.

    Products that aim to protect from any unknown threat, malware or payload, like Anti Virus, Anti Spam, Intrustion Prevention and even Vulnerability Scanners, provide information that is know already.

    Now that a particular exploit is know, protection for it can be provided in two distinct locations: the vulnerable software can be patched to remove the problem. Or, what the security industry offers, have another piece of software in place that tries to protect from something that is known already. And with that, raising system complexity and opening another vector for vulnerability.

    The sustainable approach is to invest in secure software and architecture, that has built in encryption, authentication and redundancy. This is something the security industry can provide as technology vendors, rather than chasing the magical unicorn.