This article brings to light another wrinkle in the ongoing debate around offensive countermeasures in cyber warfare. What role should private industry play when foreign entities attack or manipulate US commercial institutions? Do American businesses have the right to defend themselves or retaliate when attacked? What role can/should the federal government play in these situations?
This is yet another concerning breach at a fast food restaurant. Obviously the scope of this breach is still under investigation, but it will still likely lead to another round of card re-issues and general consumer angst.
Interesting read heading into the new year…
This rumor/development has been floating around for some time. I believe this is a necessary step for Microsoft to continue its transition to a services company and away from the legacy PC footprint. This type of browser development should also ultimately fuel a mobile/tablet/cloud strategy.
Interesting list of companies to read through with a heavy lean toward big data analysis targeted at APT. I was also glad to see some funding targeted at IAM and end user education solutions. I know I have added a few new companies to explore during conference season this spring.
Interesting breakdown of the functionality possessed by the US and other major players in decrypting significant Internet traffic including HTTPS and IPSEC.
More content by Krebs on Lizard Squad and their pathetic antics over the Christmas holiday…there is nothing remotely impressive about these children. This is not cyber security in any form.
Krebs said it well. This was a pathetic and cowardly act. As a father simply hoping to enjoy watching his wife and children play their new gaming platform only to be turned away by a network failure, I was seriously annoyed to hear it was a DDOS attack. This cowardly act should be shared with the public and these sad little thugs should be called out just as Krebs has done.
This content is particularly true in the context of SIEM and overall log retention and correlation. The decision making process around incident response is multifaceted and is something all organizations should actively consider, plan around, and practice.
This type of vulnerability demonstrates the need to consider all aspects of a system and to have a patching strategy for all OS’s. Many people discount NTP and even more people completely discount OSX. Keep Calm and Patch On.