Latest Infosec Controversy Highlights the Real Issue: We are Getting Hacked.

And yet the controversy only highlights the real issue: we are getting hacked every day in attacks that span the entire spectrum of sophistication.

What version of TLS are your servers using?

A new hacking tool called BEAST cracks TLS 1.0/ SSL in under 10 minutes. The attack is very specific and …

Do you know what Phone Phishing (or Vishing) is? Beware of the Debit Card Vishing Scam!

The technology may be new, but the scams still play upon the same age-old weakness in human nature: our trust.

You can’t make this stuff up. It really would be interesting to know who’s behind the Sony Breach.

Seriously.  Could you even make these stories up? Sony comes clean.  They admit that 77 million records were compromised. In …

Decrease in hacked records points to craftier attacks, not better security

Decrease in hacked records points to craftier attacks, not better security

An InfoWorld article summarizes the Verizon 2011 Data Breach Investigations Report(DBIR) and shows that – surprise! – the attackers are …

SecurID Suffers Data Security Breach

RSA, one of the pioneering companies of information security and the creator of SecurID technology in use by thousands of …

Auto makers have some work to do securing passive keyless entry and start systems

For as little as $100, equipment can be obtained off-the-shelf and configured to sniff the codes used by these automobile systems.

How to avoid having your bank account drained

The only true defense is behavior: not clicking, not opening, etc.

Hacktivists and ‘the Professionals’ should make 2011 quite interesting

From Hacktivists to ‘the Professionals’, DDoS attacks are a major tool. http://ow.ly/3sKj2 And detailed DDoS discussion: http://ow.ly/3sKhs Tweet

2011: expect more of using social media for hacktivism

2011 will be the year of using old attack vectors in new web 2.0 ways. DDoS with social media? Browser-only …