From The Blog
-
ConnectWise Slash and Grab Flaw Once Again Shows the Value of Input Validation We talk to Huntress About its Impact
Written by Sean KalinichAlthough the news of the infamous ConnectWise flaw which allowed for the creation of admin accounts is a bit cold, it still is one that…Written on Tuesday, 19 March 2024 12:44 in Security Talk Read 702 times Read more...
-
Social Manipulation as a Service – When the Bots on Twitter get their Check marks
Written by Sean KalinichWhen I started DecryptedTech it was to counter all the crap marketing I saw from component makers. I wanted to prove people with a clean…Written on Monday, 04 March 2024 16:17 in Editorials Read 1577 times Read more...
-
To Release or not to Release a PoC or OST That is the Question
Written by Sean KalinichThere is (and always has been) a debate about the ethics and impact of the release of Proof-of-Concept Exploit for an identified vulnerability and Open-Source…Written on Monday, 26 February 2024 13:05 in Security Talk Read 1113 times Read more...
-
There was an Important Lesson Learned in the LockBit Takedown and it was Not About Threat Groups
Written by Sean KalinichIn what could be called a fantastic move, global law enforcement agencies attacked and took down LockBit’s infrastructure. The day of the event was filled…Written on Thursday, 22 February 2024 12:20 in Security Talk Read 1085 times Read more...
-
NetSPI’s Offensive Security Offering Leverages Subject Matter Experts to Enhance Pen Testing
Written by Sean KalinichBlack Hat 2023 Las Vegas. The term offensive security has always been an interesting one for me. On the surface is brings to mind reaching…Written on Tuesday, 12 September 2023 17:05 in Security Talk Read 2133 times Read more...
-
Black Kite Looks to Offer a Better View of Risk in a Rapidly Changing Threat Landscape
Written by Sean KalinichBlack Hat 2023 – Las Vegas. Risk is an interesting subject and has many different meanings to many different people. For the most part Risk…Written on Tuesday, 12 September 2023 14:56 in Security Talk Read 1856 times Read more...
-
Microsoft Finally Reveals how they Believe a Consumer Signing Key was Stollen
Written by Sean KalinichIn May of 2023 a few sensitive accounts reported to Microsoft that their environments appeared to be compromised. Due to the nature of these accounts,…Written on Thursday, 07 September 2023 14:40 in Security Talk Read 2124 times Read more...
-
Mandiant Releases a Detailed Look at the Campaign Targeting Barracuda Email Security Gateways, I Take a Look at What this all Might Mean
Written by Sean KalinichThe recent attack that leveraged a 0-Day vulnerability to compromise a number of Barracuda Email Security Gateway appliances (physical and virtual, but not cloud) was…Written on Wednesday, 30 August 2023 16:09 in Security Talk Read 2098 times Read more...
-
Threat Groups Return to Targeting Developers in Recent Software Supply Chain Attacks
Written by Sean KalinichThere is a topic of conversation that really needs to be talked about in the open. It is the danger of developer systems (personal and…Written on Wednesday, 30 August 2023 13:29 in Security Talk Read 1893 times Read more...
Recent Comments
- Sean, this is a fantastic review of a beautiful game. I do agree with you… Written by Jacob 2023-05-19 14:17:50 Jedi Survivor – The Quick, Dirty, and Limited Spoilers Review
- Great post. Very interesting read but is the reality we are currently facing. Written by JP 2023-05-03 02:33:53 The Dangers of AI; I Think I Have Seen this Movie Before
- I was wondering if you have tested the microphone audio frequency for the Asus HS-1000W? Written by Maciej 2020-12-18 14:09:33 Asus HS-1000W wireless headset impresses us in the lab
- Thanks for review. I appreciate hearing from a real pro as opposed to the blogger… Written by Keith 2019-06-18 04:22:36 The Red Hydrogen One, Possibly One of the Most “misunderstood” Phones Out
- Have yet to see the real impact but in the consumer segment, ryzen series are… Written by sushant 2018-12-23 10:12:12 AMD’s 11-year journey to relevance gets an epic finish.
Most Read
- Microsoft Fail - Start Button Back in Windows 8.1 But No Start Menu Written on Thursday, 30 May 2013 15:33 in News Be the first to comment! Read 116526 times Read more...
- We take a look at the NETGEAR ProSafe WNDAP360 Dual-Band Wireless Access Point Written on Saturday, 07 April 2012 00:17 in Pro Storage and Networking Be the first to comment! Read 87481 times Read more...
- Synology DS1512+ Five-Bay NAS Performance Review Written on Tuesday, 12 June 2012 20:31 in Pro Storage and Networking Be the first to comment! Read 82031 times Read more...
- Gigabyte G1.Sniper M3 Design And Feature Review Written on Sunday, 19 August 2012 22:35 in Enthusiast Motherboards Be the first to comment! Read 80336 times Read more...
- The Asus P8Z77-M Pro Brings Exceptional Performance and Value to the Lab Written on Monday, 23 April 2012 13:02 in Consumer Motherboards Be the first to comment! Read 70989 times Read more...
Displaying items by tag: PIPA
CISPA On the Floor of the House For Debate Right Now 4-26-2012
Well we knew it would come to this, despite growing outcry against the Cyber Intelligence and Sharing Protection Act the House of Representatives (who are they representing?) is holding a debate on this controversial bill. We have talked about CISPA in the past and the bills that led up to what is nothing more than a revocation of your right to private communication in the past and what the implications of a bill so loosely outlined will mean in the coming months.
Anonymous Has Helped to Bring Corporate and Government Ignorance to Light
If there is one thing that you can say Anonymous has done that has a measurable positive effect it is exposing the level of Corporate and Government Ignorance. Ignorance is not an admissible excuse any longer in this day and age and is often used in court when someone says they did not know they were breaking the law. Since this is generally accepted why is anyone willing to give companies that show massive amounts of ignorance (which is just really lack of forethought or cost cutting) when it is discovered that their systems are not secure? We are shocked that this is at all acceptable considering the data breaches going back as far as 2009. Still we continually hear about this product or that network is suddenly discovered to be insecure. Exactly how is that possible?
SOPA, PIPA, ACTA and CISPA All Raise Serious Security Concerns; Yet No One Seems to Notice
Looking at bills like SOPA, PIPA and CISPA (Cyber Intelligence Sharing and Protection Act) it is easy to see the argument for Civil Liberties, Censorship, Personal Privacy and Private Communications. In fact we hear about this on a daily basis from groups like Anonymous, the Electronic Frontier Foundation, Fight for the Future and more. However, while all of these arguments are very valid and ring in the ears of voters and consumers everywhere there is another threat that many are overlooking. This threat might even be larger than the ones that are talked about over and over; the security threat.
Netflix Opens Its Own Lobby Group to Support SOPA... FLIXPAC is Born
The war for and against SOPA has once again heated up. We have already told you that the entertainment industry, content owners, and lawmakers are working very hard to push through legislation to get what they want (control of the internet as a means of distribution of their content). It does not matter that the simple act of do this violates many Civil Liberties or that it represents a violation of the very basic tenants of the existing Anti-Trust laws that we have. Now only a few days after Chris Dodd let slip that the MPAA is working to reopen SOPA (or something worse) we find that a new power lobby has sprung up from the ground to take the banner of censorship and wave it.
Dodd Hints At The Return of SOPA While The FUD Campaign to Support It Gets Into Full Swing
In mid-January the battle over SOPA and PIPA hit a peak with an unprecedented show of opposition. We saw Wikipedia go dark for the day while other large site put black censored bars over their logos. At the end of this the SOPA and PIPA backers in the Senate and the House of Representatives decided they needed to change their direction. Lamar Smith, the sponsor for SOPA made the official announcement that SOPA was being shelved. Many hailed this announcement as a victory, but it seems they did not see the finger crossed behind Smith’s back.
Spain's Sinde Law Gives A Glimpse Into How Badly SOPA and PIPA Would Have Been Abused
If you ever needed evidence of how badly laws like PIPA and SOPA (and of course ACTA) could and would be abused you have to look no further than some of the laws that are already in place. We have shown you how the lawyers for the entertainment industry have (and continue to do so) violated due process and circumvented even court orders to get what they want. Now we have Spain’s Sinde Law as a direct show of how eager the content “owners” are to pull down sites or simply make complaints.
Opertaion Global Blackout Would Have Happened Tomorrow; If It Were Real... Now What Did We Learn?
A while ago we wrote a piece that talked (in simple terms) about how Anonymous could kill the internet through attacking the root DNS servers. The article was written with the intent to give a background on the system in place and how it works. We did not then, nor do we now believe that Anonymous would take down the internet. As with all of the threats to take down twitter, Facebook and other forms of communication it would be exceptionally counterproductive. If Anonymous were to take down the internet and prevent connecting to servers via DNS it would lose many of their followers and supporters for at least the length of the hack.
The Internet Faces Serious Growing Pains as it Matures, But it Will Survive Even the Most Restrictive Law
Today is a busy day on the Internet (it usually is on a Monday morning). There are multiple articles and comments that are all related to the freedom of the Internet and how the world is evolving to embrace it while some in power are de-evolving to tray and restrict it. At this point there is no clear winner, but the sides are being firmly drawn in the sand and it is clear that things will get worse before they get better.
Anonymous and Occupy want to Occupy the Vote in 2012
In what has to be one of the most unusual “Get-The-Vote-Out” campaigns that I have personally seen it appears that Anonymous and the Occupy group are urging people to hold politicians accountable for their actions by voting them out of office. While some in the media are calling this a first it is not the in reality. In multiple messages Anonymous has called on the public to hold their political leaders accountable. Their methods might be different at times, but this is also the beginning of the voting season in the US so the move really comes as no surprise.
Google's stand on their new Privacy Policies brings an added danger...
The news has been buzzing with talk of Google’s new combined privacy policies and the impact they will have on the user’s personal information. This is due to the way that Google is moving to a combined user format and will allow for the sharing of user information between different platforms and services. Now, we agree that this is not a good thing and is something that Google needs to reverse their decision on, but there is something else at stake here. This is something that most publications have missed the boat on and one that I think even Google has not considered…