-
-
Popular Posts
- Do We Really Want Privacy? 2 comment(s)
- About 0 comment(s)
- The Risk of Blogging 0 comment(s)
- The Future of Cybercrime 0 comment(s)
- The Importance of Application Security 0 comment(s)
Users and Hits
My Trips
Category Archives: Incidents
10 of the Top Data Breaches of the Decade
You might have read that I ranted a little bit about the iPad data breach: Who needs a (vulnerable) iPad if you can get an nPad? and some people pushed back – which I can understand. So, to put it … Continue reading
Vulnerability Disclosure to Compete?
As you know (I stress that fairly often ), I am Swiss. The reason why I am stressing this today is that I want to give you an example on security from the Swiss market: The banks here on place … Continue reading
Update on the Khobe “vulnerability”
Just an update on my recent post on The “KHOBE – 8.0 earthquake” – What’s behind it. In the meantime we worked with Matousec and confirmed that neither Microsoft Security Essentials nor Forefront Client Security are affected by this “vulnerability”. … Continue reading
The “KHOBE – 8.0 earthquake” – What’s behind it
On different social media this article actually gets tremendous coverage: KHOBE – 8.0 earthquake for Windows desktop security software. Now, before you read the rest here, I am not an AV-specialist nor do I have very deep, deep knowledge on … Continue reading
A Detailed Analysis of an Attack – Do We Need an International Incident Sharing Database?
I recently came across a paper called Shadows in the Cloud, which is actually a follow-up report of Tracking GhostNet: Investigating a Cyber Espionage Network, an investigation of the attacks on the office of the Dalai Lama and some governmental … Continue reading
Posted in Associations, Crime, Critical Infrastructure Protection, Cybercrime, Government, Incidents, Industry, Law Enforcement, Legislation, People, Policy, Process, Security, Technology, Terrorism, Trends
Tagged Cloud, Collaboration, Crime, Cybercrime, Government, Hacking, Incident Sharing, International, Law Enforcement, Legislation, Policies
1 Comment
Hacking Incidents 2009 – Interesting Data
There is a project called the web hacking incident database (WHID), which collects data and statistics on web-application related security incidents. I was just looking into their report called The Web Hacking Incident Database 2009 which has some pretty interesting … Continue reading
Posted in Crime, Cybercrime, Incidents, Industry, Process, Trends
Tagged Crime, Cybercrime, Hacking, Incidents
Leave a comment
When Security Essentials are not Microsoft Security Essentials
It is so old: Software telling you that you are infected and that you have to install this latest security software immediately. You can bet that this then installs malware on your PC instead of cleaning it. We mentioned this … Continue reading
Posted in Cybercrime, Incidents, Microsoft
Leave a comment
The Latest Internet Explorer 0Day
As it happens: I have been skiing last week (the weather was gorgeous) and now I am back (unfortunately) and confronted with the next Internet Explorer 0Day vulnerability, which already causes noise – in my opinion too much for the … Continue reading
Posted in Cybercrime, Incidents, Incidents
Leave a comment
SANS Top 25 Most Dangerous Programming Errors – the same as very often…
I just worked my way through the list SANS published. Looking at the list it is not surprising but scary to see which errors made it to the top of the list: Cross-site Scripting SQL Injection Classic Buffer Overflow Cross-Site … Continue reading
Posted in Associations, General, Incidents, Trends
Leave a comment
Children – A Threat For Corporate Security?
I read this article this morning: Safer Internet Day: How children can undermine corporate security and it actually reminds me of all the PCs I looked at in my private environment. When I see a heavily infected PC, the parents … Continue reading
Posted in Incidents, People, Trends
Leave a comment