Ugh!!’s Greymatter Honeypot

Distracting the Mind with Information Overload

security Archives

Good to catchup

One fo the great things about taking some time off is that I get the opportunity to catch up on some things. I’m not talking about finding out which is the best acne treatment on the market, but rather catch up on my reading, things… Read more »

Risk Management talk by Richard Starnes

Just attended a breakfast seminar organised by Sure here in the Isle of Man. The main talk was about Risk Management followed by a sales spiel on Blackberry. I almost fell asleep in the second bit (it was early in the morning), but the Risk… Read more »

Upgrade to WordPress 2.5.1 – Now!

Just upgraded this blog to WordPress 2.5.1 as I’ve only just spotted that it’s available. Probably the most important feature is a security fix that is pretty ugly: An attacker, who is able to register a specially crafted username on a WordPress 2.5 installation, is… Read more »

The Joys of Scaremongering

According to a report I’ve just glanced over, 9 out of 10 websites are “sitting ducks”. The article lists a whole range of problems that websites ranging from Cross-Site Scripting (XSS) exploits to Cross Site Request Forgery (CSRF). With such a range of issues most… Read more »

AJAX attacks and how to mitigate against them

Excellent post on The Register entitled Reduce your exposure to AJAX threats, which talks about three pieces of advice you need to keep in mind when developing AJAX applications. There’s nothing new in terms of security principles, just an application to the fact that a… Read more »

The 12 most common application level hack attacks

I got an interesting paper in my email today entitled The 12 Most Common Application Level Hack Attacks? written by Watchfire Corporation. Most development probably know about most of these, but it was nice to see them collected in one place. In a nut shell,… Read more »

You make it, we’ll break it!

The iPhone has only been around for a couple of days and a number of people out there are working hard at breaking into the device. It’s strange how a whole industry has spawned around people hacking their way around software and systems .. and… Read more »

Newer Entries »