Monthly Archives: May 2013

ContraRisk Security Podcast 0012: Phishing & security awareness

» Listen or download now on the podcasts page » Phishing clearly works and is on the rise. It’s often the first step in targeted attacks – so-called Advanced Persistent Threats (APTs). Why has it become so popular with attackers? “I think that you’re attacking the soft underbelly of the organisation, which is the human,” explains Joe Ferrara, CEO of Wombat Security… Read more »

ContraRisk Security Podcast 0011: Socioware

» Listen or download now on the podcasts page » Microsoft recently warned about Man in the Browser (MitB) malware exploiting Facebook sessions. When a user is infected – often by drive-by downloads on infected or malicious sites – the malware uses authenticated sessions on Facebook to post messages, ‘like’ pages and get up to general mischief. But this wasn’t… Read more »

LulzSec on the ‘cutting edge’ of cybercrime? Hardly…

It’s commonplace for the prosecution in hacking cases to overstate the capabilities of the accused and exaggerate the damage they’ve caused. One is reminded of the assertion that Kevin Mitnick could launch nuclear missiles just by having access to a phone. Sometimes this inflation of the dangers is detestable. At other times it is merely risible. But it never reflects… Read more »

The US cyberwar on China

      No Comments on The US cyberwar on China

If you’re the type of person prone to conspiracy theories, you might conclude that the US administration is currently doing the cyberspace equivalent of sailing a gunboat up the Yangtze and firing off some warning shots. We’ve just seen a report submitted to Congress by the Department of Defense (DoD) directly naming (for the first time at this level) China… Read more »

Google Glass: a security disaster waiting to happen?

So, it seems we have the first vulnerability for Google Glass, even before the product from your favourite Internet stalker hits the stores. Consultant Jay ‘saurik’ Freeman has described how he used a known exploit for Android Ice Cream Sandwich (4.0) to get root on Glass. This isn’t going to endear the platform to people who are already worried about… Read more »