Heartbleed – on the mend

Internet Storm Center says Heartbleed around the net is slowly being patched. How do they know that?  Well, in case you are not a programmatic person… One can easily scan the Internet to find out what is going on, and that is exactly what the bad guys are doing all the time. They know when … Read more

New Public Breach at sally Beauty Supply

bankinfosecurity has the information   The initial reports were that it was a data breach, but no credit card data was stolen, but 11 days later it looks as many as 25,000 records were exposed and stolen Sally Beauty Supply operates approximately 500 stores worldwide and had $3.6 billion in sales in 2013.   As … Read more

New Microsoft Word vulnerability

Technet link – specific wording: The vulnerability could allow remote code execution if a user opens a specially crafted RTF file using an affected version of Microsoft Word, or previews or opens a specially crafted RTF email message in Microsoft Outlook while using Microsoft Word as the email viewer. An attacker who successfully exploited the … Read more

WordPress DDOS potential overplayed?

That is what Jason Cohen (CTO of WP engine) is saying at blogs.csoonline.com He also said: (what the pingback function does, calling it “an altruistic, friendly, social system.”) What can happen is a lot of pingbacks with the links in the comments.  If done  on many pages with a lot of effort it can happen. … Read more