 October 3rd, 2011 by lhaas
Boy Genius Report (BGR) has uncovered a major security flaw on AT&T’s Samsung Galaxy S II. This flaw allows anyone to bypass the unlock pattern and the PIN security. An update to the original article says that AT&T and Samsung are working on a permanent solution.
We have confirmed that the flaw exists [...]
September 30th, 2011 by lhaas
We have to do something that actually works, as opposed to accepting a security circus in the form of virus or malware scanners and other mathematically proven insufficient and inefficient efforts. We are approaching the point where people and organizations are falling back to pen and paper for keeping important secrets, because they [...]
September 28th, 2011 by lhaas
Andrew Hoog says old first aid answers to cyber warfare need to be replaced with agressive, pro-active forensics.
In this brief article, Andrew stresses the need for proactive security, something that viaForensics has been working on for several years. We have taken our expertise in computer forensics and applied that to security. Our [...]
September 26th, 2011 by ahoog
I was interviewed on “The Promise of Tomorrow” with Colonel Mason last week and he posted a follow up article on our liveForensics service which was very well written. We’ve have our liveForensics solution in production since January 2010 and have some key success stories. While we have not publicized it too much, the end of the [...]
September 26th, 2011 by ahoog
While doing some reading about Exchange ActiveSync mailbox policies in SP1 for Exchange 2010, I came across a Microsoft TechNet article and at the bottom it gave an example of how to configure policies for three separate groups:
Users Managers Executives
What I find both humorous and concerning is how the example changes the policy for each group. [...]
September 26th, 2011 by lhaas
Three new bills strengthening data breach security notification regulations bring us a step closer to Federal standards. The bills (1) require businesses to develop data privacy and security plans; (2) set a federal standard for notifying individuals of breaches of sensitive personally identifiable information; and (3) focus the Computer Fraud and Abuse Act statute more narrowly on [...]
September 19th, 2011 by lhaas
Free sounds good. But, as at least one reader commented, free can come at a cost. In this case, security.
The mother of all ingenious hacks has emerged: if you have an Android smartphoneand a T-Mobile (US) unlimited messaging plan, you can now use an app called Smozzy to surf the web… for free.
[...]
September 16th, 2011 by lhaas
Catch Andrew discussing strategies for deploying secure mobile apps and devices at ITA Crain’s Small Business Week:
Tuesday, October 4, 2011 2:00 – 4:00 PM
Presentations by: Sprint ”Consumerization of IT – Driving a collaborative approach to Managed Security” & Andrew Hoog, CIO, viaForensics ” Mobile Security – Strategies for deploying secure mobile apps and devices”
Register here.
[...]
September 15th, 2011 by lhaas
viaForensic’s new Director of Research and Development, Thomas Cannon, has published an article on Pen Testing on Android. Read it as well as other some other great articles on Android security by subscribing to Hakin9 IT Security Magazine through their website.
This tutorial takes the reader through the creation of a personal lab with [...]
September 12th, 2011 by lhaas
A medical privacy breach led to the public posting on a commercial Web site of data for 20,000 emergency room patients at Stanford Hospital in Palo Alto, Calif., including names and diagnosis codes, the hospital has confirmed. The information stayed online for nearly a year.
via Patient Data Posted Online in Major Breach of [...]
|
|
