New Youtube fixvirus Security Show
New fixvirus Post at http://www.fixvirus.com/why-perform-your-own-vulnerability-analysis/
Test new POODLE vulnerability
There is a new POODLE vulnerability and test at Qualys SSL labs) https://www.ssllabs.com/ssltest/ POODLE (Padding Oracle On Downgraded Legacy) The problem is that your encryption stream may be downgraded to…
Healthcare data at risk
It is only a matter of time before health data will be plastered all over the Internet. A number of Blogs are discussing this very issue http://www.safelogic.com/exposing-the-risks-of-data-driven-healthcare/ is one. Penetration…
Best Password Management
Due to the bad password practices of the general population, the latest example is the Sony Pictures hack uncovering the passwords of Sony Pictures employees(as well as SSN and more):…
Penetration testing example: exifdata function
SANS pen tester has an excellent example (guest written by Chris Andre Dale) and also a new Zero-day Cross Site Scripting(XSS) example at SANS pen testing blog http://pen-testing.sans.org/blog/pen-testing/2014/12/04/cross-site-scripting-through-file-metedata The vulnerability…