Tag: security

  • Facebooks To Kill Flash

    Facebook’s new chief security officer, Alex Stamos, has stated publicly that he wants to see Adobe end Flash. Most of the internet will consider this a good idea. Not too sure about the Facebook bunch yet. via: Slashdot

  • Escaping VMware Workstation through COM1

    A bug in VMWare’s vprintproxy.exe process allows the guest OS to escape it’s environment through the COM1 serial port. via: Escaping VMware Workstation through COM1

  • Convenience Containers

    Containers, in particular represented through the hype around Docker, get a greater share of attention of the IT world for the past year or two. And it happens for good reason. Just like other virtualization techniques, containers allow for easier deployment, for better maintainability, for improved management of applications, for better hardware utilization and for…

  • Braucht jeder Hacker.

    Auch Cyber-Security braucht modische Cyber Accessoires.   Leute, ernsthaft? pic.twitter.com/I8D7C3g0gU — Nero (@HirteDerMeere) April 18, 2015 via: Schlecky Silberstein

  • Chip Fingerprinting Scheme Could Secure IoT Devices Against Malware

    Chip Fingerprinting Scheme Could Secure IoT Devices Against Malware. Security in the context of the Internet of Things (IoT) is an area that is expanding, along with the growth of IoT itself. Fingerprinting schemes are an approach that didn’t go along with malware prevention in traditional computing, but IoT use cases may benefit from a…

  • Why Data Breaches Don’t Hurt Stock Prices

    Why Data Breaches Don’t Hurt Stock Prices. In short: because there is no reliable metric to make the impact transparent to shareholders and customers. via Harvar Business Review.

  • Docker security

    A quick overview. Docker security: making sure you get it right.

  • The magical security unicorn.

    The purpose of security software is to make other software more secure. This is what the security industry claims, sometime with legit arguments, sometime the industry tries to chase unrealistic ideals, as a recently linked article suggest. And I couldn’t agree more. The security industry approaches the problem from the wrong end, most of the…

  • Wieland Alge, Barracuda VP, about the Security Industry

    For short: “Get real”. A few good points, still from somebody from inside the industry that produces security software. via ‘Stop chasing invisible unicorns’ – Barracuda EMEA VP tells security industry to get real – Channelnomics.eu.

  • Rouge CAs and certificate pinning.

    A intermediate CA, held by MSC Holdings, issued by CNNIC, the Chinese NIC, apparently issued certificates for unauthorized domains. The problem was detected by Google for their domains through pinned certificates in their browser. Google Online Security Blog: Maintaining digital certificate security.