Stories by Stilgherrian

Remote Desktop Protocol security hole: 5 unanswered questions

Whether the Windows Remote Desktop Protocol (RDP) security vunerability will result in widespread Conficker- or Blaster-level mayhem remains to be seen. While we're waiting for the apocalypse, consider these question.

By Stilgherrian | 19 March, 2012 14:39

Tags: Remote Desktop Protocol

Android, the simmering security shemozzle

Even apart from the serious security flaw in HTC Sense and malware that talks to an encrypted blog, to name just two recent issues, a consensus seems to be emerging. Android has serious security problems.

By Stilgherrian | 14 October, 2011 12:33

Tags: Android, mobile security, security

Duqu, Son of Stuxnet, has arrived

The team behind Stuxnet, the complex malware used to attack Iran's nuclear program earlier this year, has produced another worm, dubbed "Duqu" by McAfee Labs.

By Stilgherrian | 19 October, 2011 07:28

Tags: Certificate Authorities, duqu, mcafee labs, security, Stuxnet

Global time zone database closed following legal threat

The tz database, the key source of time zone information for most the computing world, has been shut down following allegations of copyright infringement.

By Stilgherrian | 07 October, 2011 15:06

Tags: copyright infringement, government, Microsoft, Olson database, tz database, zoneinfo database

MD5 password hashes are dead

MD5 hashes, still a common method for securing login passwords, are no longer an adequate defence against hackers, according to Kaspersky Lab analyst Evgeny (Eugene) Aseev.

By Stilgherrian | 09 September, 2011 16:26

Tags: authentication, cryptographic hash function, Eugene Aseev, hackers, HB Gary, kaspersky lab, MD5 hashes, rainbow tables

Rogue Google certificate used by 300,000 Iranian IPs

Iranian internet users whose security may have been compromised by the forged Google.com digital certificate could number in the hundreds of thousands. An interim report (PDF) commissioned by DigiNotar, the certification authority (CA) at the centre of the hacking incident, also reveals lax security at the Dutch firm.

By Stilgherrian | 06 September, 2011 11:02

Tags: breach, DigiNotar, digital certificates, Dropbox, Fox-IT, Google, hackers, MI6, network security, network servers, pki, security, Tor, VPN servers

Online health records at risk from malware

AusCERT general manager Graham Ingram has questioned the wisdom of Australia's National E-Health Strategy plans to make medical records available online, pointing to the difficulty of securing end-users' computers.

By Stilgherrian | 25 August, 2011 20:34

Tags: advanced persistent threats (APTs), auscert, covert enterprise intrusions (CEIs, ehealth, Graham Ingram, health records, malware, phishing attacks

Twitter Feed

  • rohan_p RT @Techworld_AU: Gear and gadgets at @CeBITAUS 2012, Sydney http://t.co/J1Sch1sX #cebit2012
    1 day, 2 hours
  • Techworld_AU Gear and gadgets at @CeBITAUS 2012, Sydney http://t.co/J1Sch1sX #cebit2012
    1 day, 2 hours
  • HamishBarwick CeBIT 2012: Will NBN speed up freight delivery times? http://t.co/gaZyjOlH #cw #cio #tw #CeBIT2012 #nbn
    1 day, 22 hours
  • HamishBarwick CeBIT 2012: NAB calls for mobile app security overhaul http://t.co/3Z3ZPUPq #cw #cio #tw #CeBIT2012 #infosec
    2 days, 1 hour
  • rohan_p RT @Techworld_AU: BigPond Games Arena, Games Shop hit by hackers http://t.co/OXNPeDfL #bigpond #infosec #security
    2 days, 4 hours

Whitepapers

- + c

Latest News

- + c
more