-
Feb 201121
This website is periodically a target of attacks from people looking to show me up. Since I am a security consultant, if someone could insert a script in a form on the website or do something similar, they think they have proven that they are smarter than I am. Every attempt up to now has failed and that is more due to others’ efforts than mine.
Continue reading "When idiots attempt to attack websites" »
-
Feb 201111
Researchers have identified a method for stealing passwords stored on locked iPhones and iPads without having to crack the device’s user-defined passcode. This can have a huge impact on the adoption of these devices by enterprises, not to mention the effect on even ordinary individual users.
Continue reading "iOS device encryption may not protect as much as you expect" »
-
Nov 20107
A lot of popular websites like Twitter and Facebook use HTTPS for the login page, but switch to regular HTTP for the subsequent pages. This can result in session hijacking attacks where an someone else on the same network may be able to view all the traffic (including your photos and posts).
Continue reading "Safer web browsing with HTTPS" »