überblog geek life, humour, insights, and meta stuff
The dork is featured again in Issue #4 (August 1) of Information Security Short Takes that I was in last month. This blog features a monthly blog carnival potpourri webzine of useful selection of security related articles. I know, I know, nobody wants to hear about security. It’s boring as all get out, and it’ll probably not happen to you. Except that it is happening, to more and more of us each year. Knowledge is power in this game. Know how it works, what to do and what not to do, and diminish your chance of being ripped off.
Continue Reading…
Listen to this post 
A old school phish typically involves an Instant Messenger or email message asking you to click a link. This tried and true technique uses bogus links, and this article shows you how to detect them. Newer phishes bite you at a different level. They feed you “good” links but then they cause the good links to turn into bad ones at the network level where you normally don’t go. These phishes will work even if you manually type the good URL into a completely virgin browser. About the only way to be safe from these is to protect your computer overall. The section where I describe bogus URL’s may seem a little long, but consider that it is easier for human brains to spot patterns than it is to talk about them. An accurate and complete description is necessary so your brain can learn what to look for. Don’t sweat it — with just a little practice you’ll be able to sniff a bogus URL in a matter of seconds just like an IT security pro.
Listen to this post 
Another database: CRACKED A recent security breach of a local online merchant prompted me to write this post. As a shopping cart software author and former security analyst at Symantec I know the nuts and bolts of security from several perspectives. Credit card fraud is a huge and growing problem. See my article about credit card security online for a detailed discussion on how credit card security works and what the vulnerabilities are. There is a solution, but it will not be implemented until pressure is brought to bear on the key players.
Continue Reading…
Listen to this post 
Some people are cavalier about giving out their credit card number online. “Oh well,” they think, “it’s bound to get stolen some day….” The other end of the scale is the “better safe than sorry” people who refuse to buy anything online ever because they don’t understand it and can’t tell the safe from the scary. I hope that after reading this post you’ll be able to tell the difference.
Here are the key aspects of credit card security:
Listen to this post 