Off-The-Shelf Hacker: The Microcontroller Revolution Is Just Getting Started
We received pretty good response from the “This Story was Composed on a $9 linux Computer” column last week, which featured the low-cost CHIP board. HackerBoards also ran a little blurb I did on the...
View Article360开始谈协同,成功还会遥远吗?
8月16日,第四届中国互联网安全大会在北京国家会议中心正式举行。 与前几届不同,我终于回归到媒体人身份,可以专心致志地聆听大会的主题内容,而不是像以前几届,多多少少分心惦记着其后主持论坛的相关细节。 然后,一不留神就听到了360公司董事长周鸿yN讲述“安全的协同和合作”。我凝视着台上:那位拿起讲稿、翻着PPT的红衣人,真的是他吗?...
View ArticleBSides Manchester 2016 roundup
BSides Manchester 2016 BSides Manchester is in its third year and they very kindly invited me back to be the MC for track 1. I drove up to Manchester the night before. It was an uneventful trip,...
View ArticleTracking The Megatrend of Bigdata
There are seven key megatrends driving the future of enterprise IT. You can remember them all with the helpful mnemonic acronym CAMBRIC, which stands for C loud Computing, A rtificial Intelligence, M...
View ArticleTNS Tutorial Friday: How Arcadia Simplifies Role-based Access for Hadoop Stacks
+ When integrating traditional business intelligence software with Apache Hadoop , developers often find themselves mired in trying to coordinate access roles across different applications....
View Article关注 |银川市委召开网络安全和信息化领导小组会议
关注 |银川市委召开网络安全和信息化领导小组会议 一点号网信宁夏29分钟前 php?url=0EFG8gnVa4" alt="关注 |银川市委召开网络安全和信息化领导小组会议" />银川市委召开网络安全和信息化领导小组会议 发展好网信事业走好网络群众路线...
View Article看了本文,短信里的链接你还敢点吗?
摘要: 今天早上,游侠的同事到办公室后问我:昨天收到一条短信,里面有个链接,写的是我们的影集,里面还写了我的名字,我没敢点……这个敢不敢点?我还是看看吧!(短信刚才删了,游侠搜了张图片贴在这里,就这意思吧……也可能是“我和你对象好上了,还拍了很多照片,点 http:/......
View ArticleNSA Equation Group泄露的天融信产品漏洞分析(一)
*本文原创作者:Ano_Tom,本文属CodeSec原创奖励计划,未经许可禁止转载 0×01 前言 NSA的Equation Group(方程式组织)泄露的漏洞攻击代码已经有一段时间了,我们将Exploits中涉及到天融信防火墙的攻击代码进行了简单分析,发现其中的一处漏洞跟我们在2016年1月10号提交到乌云的漏洞相重合,如图...
View Article澳洲15岁少年对当地最大银行及ACORN网站发起DDoS攻击后 被判无罪
据外媒报道,近日澳大利亚伍德克夫特的一名15岁少年出于好奇,对他所在学校、澳大利亚联邦银行(CBA)及澳洲网络犯罪报告网ACORN发起DDoS攻击。 这名少年在法庭上认罪后,澳大利亚阿得莱德Christies Beach少年法院的一名法官宣判这名少年无罪释放,但必须出席一次“家庭会议”。 当地警方透露,这名少年在今年2月26日对澳大利亚联邦银行发起DDoS攻击,导致该银行 服务器 曾宕机了3小时。...
View Articletransfer
由于项目的原因,原来的项目使用.net 进行开发,现在需要转成java, 所以原来的加解密就成了一个棘手的问题。由于数据使用RSA签名加密,又因为.net 和 Java 加解密算法上的差异,并不能使用同一个私钥来对原始数据进行解密。所以考虑的方向就是签名密钥之间互相转换。...
View ArticleSSL Kill Switch and Twitter iOS
Some time ago, SSL Kill Switch somehow stopped working on the Twitter iOS App, preventing the interception and decryption of the App’s HTTPS traffic for reverse-engineering purposes. Twitter was...
View ArticleContext, Visibility and Containment NSX Securing “Anywhere” Part V
Welcome to part 5 of the Micro-Segmentation Defined NSX Securing “Anywhere” blog series.Previous topics covered in this series includes Part I Micro-segmentation Defined Part II Securing Physical...
View ArticleSmart IoT socket suffers from dumb security vulnerabilities
While it claims to be "smart," a socket powered by the Internet of Things (IoT) suffers from a number of dumb security vulnerabilities. Researchers at Bitdefender Labs came across the flaws as part of...
View ArticleTop 10 Website Security Testing Tools
Web Site Security Testing Tools Most of the viruses come to a system through applications which are downloaded from the internet. A virus can corrupt the system and the applications which are in a...
View Article3 Steps to Outsource Product Development
In-house software development can be expensive. Skilled programmers can demand handsome salaries and are often very difficult to find. Assuming you do find skilled programmers your company may not have...
View Article老将李伟:我所见证的移动安全历史
得以见证一个行业破土而出,从孱弱到璀璨,是职业生涯的某种幸运。这也许会成为值得珍藏的回忆标本。 李伟就是这样一名移动安全的老兵。在移动安全这个概念诞生之前的1998年,他正坐在摩托罗拉的办公室里,为寻呼机的系统开发核心组件。现在回想起来,中国的移动科技爆发,似天水荡平川,正是始于哪些人们腰间的“小黑盒”。就这样,他和中国最早的移动设备,以及现在已经到了知天命之年的第一批移动通信用户联系在了一起。...
View ArticleNSA hacking tools are pants claims researcher
While the headlines inspire fear that the NSA’s hacker tools are on sale on the dark web, a security expert who has had a look under the bonnet thinks they are pretty rubbish. Stephen Checkoway [no...
View Article18-year-old random number generator flaw fixed in Libgcrypt, GnuPG
Researchers have discovered a “critical security problem” that affects all versions of the Libgcrypt cryptographic library and, therefore, all versions of the GnuPG (a.k.a. GPG) hybrid-encryption...
View Article南京银行手机银行率先引用芯盾安全短信加密技术
中国电子银行网讯 据2016年最新发布的《中国互联网络发展状况统计报告》显示,截至2015年底,中国网民规模达6.88亿,其中手机网民规模达6.2亿,占比高达90.1%。与此同时,移动互联网的安全性备受关注。 南京银行一直将保障客户资金安全作为首要任务,努力探索与尝试各种新的安全手段,例如:动态密码认证、指纹识别认证、基于NFC的IC卡认证等等,在增加客户交易安全性的同时,客户体验也几乎不受影响。...
View Article