One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 740329 |
| Date de publication | 2018-06-29 13:00:00 (vue: 2018-07-11 17:02:48) |
| Titre | Things I Hearted this Week – 29th June 2018 |
| Texte |
It's been an absolutely lovely warm week in London. The sun has been shining, allergies have been high, and kids have been missing out on all the wonders because they're too busy being indoors staring at a mobile device or tablet.
Things were very different back in my days... and just like that, I've turned into my Dad!
Have I Been Pwned - The Saga Continues
I like to think of myself as a bit of a hipster because I was following Troy Hunt before he was widely recognised as being cool. I remember reading his posts on OWASP top 10 for .NET developers and thinking to myself that this guy really knows his stuff.
Which is why I was optimistic when Troy launched Have I been Pwned - but I don't think I foresaw how big the project would become and now it is being integrated into Firefox and 1Password. Not bad going for the blogger from down under.
We're Baking Have I Been Pwned into Firefox and 1Password| Troy Hunt
Defining Hacker In 2018
If you do a Google Image Search against the word hacker, you’ll get images of scary-looking balaclava-clad cybercriminals hunched over a quintessentially green computer terminal. They’re up to no good… Stealing your data, crashing critical systems, or causing general Internet badness.
In reality, the word “hacker” applies to a much broader group of people, one that extends well beyond cybersecurity. Merriam-Webster defines a “hacker” as “an expert at programming and solving problems with a computer”.
Defining "Hacker" in 2018| BugCrowd
Lessons From nPetya One Year Later
This is the one year anniversary of NotPetya. It was probably the most expensive single hacker attack in history (so far), with FedEx estimating it cost them $300 million. Shipping giant Maersk and drug giant Merck suffered losses on a similar scale. Many are discussing lessons we should learn from this, but they are the wrong lessons.
An example is this quote in a recent article:
"One year on from NotPetya, it seems lessons still haven't been learned. A lack of regular patching of outdated systems because of the issues of downtime and disruption to organisations was the path through which both NotPetya and WannaCry spread, and this fundamental problem remains."
This is an attractive claim. It describes the problem in terms of people being "weak" and that the solution is to be "strong". If only organizations where strong enough, willing to deal with downtime and disruption, then problems like this wouldn't happen.
But this is wrong, at least in the case of NotPetya.
Lessons from nPetya one year later| Errata Security
German Researcher Defeat Printers' Doc-Tracking Dots
Beating the unique identifiers that printers can add to documents for security purposes is possible: you just need to add extra dots beyond those that security tools already add. The trick is knowing where to add them.
Many printers can add extra dots to help identify which device printed a document, as it's handy to know that when they fall into the wrong hands. The |
| Envoyé | Oui |
| Condensat | 2018 29th hearted june things week |
| Tags | |
| Stories | FedEx NotPetya Wannacry |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.