Tag: security as a social science
-
Pyr0 on “the art of espionage” at Shakacon
Sarah Blankinship and I are presented Securing with the Enemy: Social strategy and team of rivals at Shakacon today. More about our talk later; this post has notes from the keynote presentation on The Art of Espionage, by Luke McOmie (aka Pyr0) of British Telecom. Luke’s consulting includes “real world risk assessments”, which sometimes involves…
-
pwn2own: the stakes just got higher
Update, March 27: Macbook Air pwned and owned — in two minutes! Update, March 28: Vista laptop pwned via an Adobe Flash vulnerability. Update, April 16: Apple issues Safari patch. Props to the winners — and to Ubuntu Linux, which emerged unpwned!
-
Cult of the Dead Cow releases ‘Goolag’ beta
Hactivists Cult of the Dead Cow (cDc) have released a Windows-only beta of Goolag, a rich client for the Google Hacking techniques pioneered by hacker J0hnny I Hack Stuff. Basically, Goolag makes it easy to use Google to search out security vulnerabilities related to your web site — or, presumably, others. From cDc’s blog: SECURITY…
-
Privacy and civil liberties: showdown time on the “Protect” America Act
Update on February 12: Final votes were today. Barack Obama voted against telecom immunity — as did Harry Reid and 29 other Democrats. John McCain along with every single Republican Senator, Joe Lieberman, and 19 Democrats voted for. More here. Update on Super Tuesday: Ari Melber’s Nation article gives the current snapshot; read the thread…
-
Poisoning squirrels in the repository
Slashdot’s linked to a bunch of good stories on computer security recently. Squirrelmail repository poisoned has the catchiest title, and plus it’s about squirrels, so it goes first. What happened was that an intruder got into the site where you download Squirrelmail, and introduced a very subtle change in the code that would allow somebody…