I received the below email with nice friendly information and updates regarding the popular WordPress plugin Wordfence, a very popular and familiar to some, Security oriented plug-in for WordPress. However, this email had a nasty bite to it. In the form of having been sent to a mailing list of 5000+ recipients without using the ‘BCC’ field. There really isn’t […]
Picture it: you are at a job interview, and the interviewer requests that you log into your Facebook account so they can shoulder surf as you lay bare your profile in its entirety. Worse, what if they ask you to hand over your Facebook username and password? You might laugh and say I would never […]
Okay, so you did a Penetration Test and all you found was an insecure printer right? The fun things that you can find on Multi-function Printing devices and how it might affect compliance… Printers, scanners, copiers, and fax machines have become more and more complex over the years. I find that this is largely due to a […]
You are probably familiar with the classic security assessments: internal and external penetration testing, security risk assessments, and PCI gap assessments. You may not be as familiar with, or even aware of, other assessments that may be just as valuable for strengthening your security program. Some of these less familiar assessments are new, the result […]
Source: Troy Hunt When news came through recently about the Bondi Westfield shopping centre’s new “Find my car” feature, the security and privacy implications almost jumped off the page: “Wait – so you mean all I do is enter a number plate – any number plate – and I get back all this info about […]
Lulz Security’s spree of embarrassing hacks continued as the group released hundreds of internal documents belonging to various Arizona law enforcement agencies, including the Arizona Department of Public Safety. Many of the documents released over BitTorrent are stamped “law enforcement sensitive” and “for official use only,” and the dump of some 700 files contains material from […]
NATO is warning subscribers to its e-Bookshop service that hackers have likely stolen its customer database. The site is run as a separate service for distributing NATO information and does not contain any classified or secret information. The bookshop has been closed and all members been warned by email to change their passwords if they […]
Travelodge has told customers who’ve received spam email that the company has not lost their credit card details, which is nice. The letter said: Our main priority is to ensure the security of our customers’ data, which is why I wanted to make you aware that a small number of you may have received a […]
Travelodge is investigating its IT systems to discover how customer email addresses have gone astray. Several other customers have blogged of similar experiences, here’s Shepy’s post on the apparent hack. Either LulzSec has taken a step down from hacking the US Senate and the CIA to target the motel chain, or Travelodge has been hit […]
I’ve had a few emails recently from people wanting to know more about Digital Forensic/Ethical Hacking degrees. People may be thinking I’m a little biased having invested countless thousands of pounds, man hours and sweat in to the course so far. However, isn’t everyone a little biased… The term Ethical Hacking comes under many headings, […]