For Thursday November 5th, we depart from our regular format for those with an advanced understanding of information security technologies. This episode is a one-topic special edition, providing coverage of a major man-in-the-middle flaw discovered in the SSL protocol (see, we told you it was for security geeks).
We will return to our regular format of [...]
Filed under: Annoucements, Breach, Exclusive, darkweb | Tagged: Marsh Ray, PhoneFactor, SSL | Leave a Comment »
Reporting from the ISACA Security and Risk Management Conference in Las Vegas, we have breaking security news this morning.
Organized cyber criminals have added a new damaging element to an already viscous cyber attack. Yuval Ben-Itzhak, CTO of Finjan spoke by phone with the Data Security Podcast about a frightening new twist to the surge of [...]
Filed under: Annoucements, Breach, Conference Coverage, Court Cases, Exclusive, Vulnerabilities, criminal forensics, darkweb, ediscovery, web server security | Tagged: darkweb, Drive-by download, ediscovery, web application security, XSS | Leave a Comment »
The Data Security Podcast is taking Labor Day off….we are working on these stories for next week’s program:
* Brian Mastenbrook’s excellent blog posting, How I cross-site scripted Twitter in 15 minutes, and why you shouldn’t store important data on 37signals’ applications
I talked to Brian, and we will advance the story he tells on web application [...]
Filed under: Annoucements, Report Security Flaws, Vulnerabilities | Leave a Comment »
30 minutes every week on data security, privacy, and the law…..(plus or minus five)
On this week’s program:
* The security lessons from Heartland data breach – what the newscasters didn’t tell you. Details on our Tales from The Dark Web segment.
* What if you discovered a web security flaw and their customer service staff ignored your [...]
Filed under: Annoucements, Breach, Court Cases, Exclusive, Podcast, Vulnerabilities, criminal forensics, darkweb, ediscovery, web server security | Tagged: SQL Injection, ReportSecurityFlaws.com, Ameriprise, American Express, Heartland, TJX, EMP | Leave a Comment »
Web application security company Breach Security announced today that SQL Injection attacks remains the number one web attack vector, accounting for nearly one-fifth of all security breaches (19%).
Attack vectors exploiting Web 2.0 features such as user-contributed content were also commonly employed: authentication abuse was the second most active attack vector (11%), and Cross Site Request [...]
Filed under: Annoucements, Vulnerabilities, web server security | Tagged: darkweb, Drive-by download, web application security | Leave a Comment »
30 minutes each week on data security, privacy, and the law….(plus or minus five)
On this week’s program:
* A double whammy…. two critical zero day attacks hit users of Microsoft products.
* A non-profit security group has a plan to fight web drive-by downloads.
* Our take on this week’s news.
–>NEW! Stream This Week’s Show with our Built-In [...]
Filed under: Annoucements, Breach, Podcast, Vulnerabilities, darkweb, web server security | Tagged: Chrome OS, darkweb, DefCon, Drive-by download, endpoints, StopBadware, Surveillance cameras, web application security | Leave a Comment »
Note to listeners: Although we usually post on Sunday night, this week’s program will be posted within the next 24 hours.
We are working on the following stories for you: Who’s behind the latest web site break-ins? How a non-profit organization can help shield you from attacks by The Darkweb.
These stories, and more, coming up on [...]
Filed under: Annoucements | Tagged: darkweb, web application security | Leave a Comment »
Large US retailer TJMaxx today announced that it has settled with a multi-state group of 41 Attorneys General, resolving the States’ investigations relating to the criminal intrusions into TJMaxx’s computer system announced by TJMaxx [...]
Filed under: Annoucements, Breach, Legislation, Vulnerabilities, criminal forensics, darkweb, ediscovery, web server security | Tagged: darkweb, ediscovery, endpoints, PCI, TJMaxx, web application security | Leave a Comment »
It is with much sadness that I came to learn that Patrick McGoohan died last week. Patrick was the creator, director, producer, and in many cases, the writer, for The Prisoner Television series in the 1960s. McGoohan was 80 years old.
The Prisoner story line: a secret agent (played by McGoohan) quits his job with the [...]
Filed under: Annoucements | Tagged: McGoohan, Surveillance cameras, The Prisoner, The Village | Leave a Comment »
