(DDoS) attacks have been around for a while but still a major problem today. Fossbytes.com just published a post covering how Github is being slammed by a massive DDoS attack from China. The original post can be found HERE. Thefastcompany.com also posted about the attack still happening against GitHub HERE.
My buddy Aamir Lakhani wrote a great post on Open Whisper used for secure messaging. The original post can be found HERE. Here is the post from Aamir.
I have been waiting for almost a year for Open Whisper systems to release an iOS Apple compatible application for secure messaging. This is free, it’s open source, its easy to use. Download it now. Continue reading →
In order to bring attention to how easy hackers are able to exploit applications, the people at Arxan Technologies have posted a series of videos showing how to hack mobile apps using various open source tools. You can find the videos HERE. Jonathan Carter does a pretty good job going into details on how the tools work with lots of details. Check it out.
A buddy of mine introduced by to a really good resource for learning Cisco technology. The site is http://labminutes.com/. It is free to watch the videos and they are really good about going into details on various topics. For example, there are 33 Cisco ASA FirePOWER videos. You can search for a specific tasks such as how to integrate with AD, configuring malware protection and so on. Here is an example list of the number of videos for popular topics. Book mark this site if you are looking for hands on training videos. Continue reading →
The people at techcrunch.com published a interesting article on the recent Blue Cross Breach. The original post can be found HERE. According to datalossdb.orb, they listed the following lost.
“Up to 11,000,000 member names, Social Security numbers, dates of birth, addresses, phone numbers, email addresses, member identification numbers, financial and medical claims details possibly accessed by hackers”
Now this isn’t as big as the Anthem breach (80,000,000) but still very substantial. Here is the post from techcrunch. Continue reading →
The security research team at Cisco known as Talos released a huge discovery of complete hidden whois data attached to more than 282,000 domains registered through the company’s Google Apps for work service. This accounts for around 94% of the addresses Google Apps has registered through a partnership with eNom. The original post can be found HERE. The post was created by Nick Biasini, Alex Chiu, Jaeson Schultz, Craig Williams and William McVey.Continue reading →
You may have heard the saying “don’t ever stick a unknown USB drive into your computer”. Here is a great example why this is good advice. Usually the fear is how malware can auto launch and compromise your computer. An example is the classic rubber ducky found HERE. Dark Purple at http://kukuruku.co/ posted HERE about a USB drive that can actually fry your computer.
This post will cover how to install Cisco Sourcefire FireSIGHT / Defense Center on a environment aka a virtualized FireSIGHT manager. The purpose is to setup the management system for central management of ASAx series appliances running the FirePOWER services. For more information on how to use Cisco Soucefire FireSIGHT and FirePOWER services go HERE. For more information on licensing go HERE. For more information on setting up the ASAx with FirePOWER services go HERE. Continue reading →