Security Blogs

This page contains a listing of blogs about security issues and solutions.

Tue, 02/23/2016 - 07:51

Imagine the situation where every house lock is made by one of three manufactures - Ambroid, Microlock, and Orange. All of the locks take your fingerprint to open, but each analyzes your fingerprint a little differently. Now the police need to enter your home (with justification). They do not have a fingerprint match, so they require Orange to create a keyhole for every lock that when using the proper key, the door will open.

Mon, 12/28/2015 - 09:48

November's terrorism attack in Paris elicited efforts by US officials to restrict or provide alternate means for decrypting messages. People in the Congress and the Intelligence Agencies repeated older requests for backdoors that would allow them to decrypt messages and content on devices.

Sun, 04/27/2014 - 19:37

This is a short follow-on to the Passwords and Hacking series.

The Internet worm "Morto A" continues to infect computers. It uses Microsoft's Remote Desktop to spread. It attempts to gain access to your computer using Remote Desktop's protocol. It will succeed if your password is one of 37 simple passwords listed below.

Solution: Don't use a simple password. See Passwords and Hacking for various means to create complex passwords.

Sun, 04/27/2014 - 21:06

Microsoft has confirmed that Internet Explorer (all versions) has a bug that allows the browser to run software as you on your computer. Making it happen is rather technical, but it can happen when you go to a "specially crafted"1 web site that downloads the code into the browser than causes the browser to execute the code as if it were part of the browser's regular code. The attacks "in the wild"2 use Flash on IE V9, 10, and 11.

Sun, 04/27/2014 - 19:34

Clipperz in a browser screen captureThere are several services that meet these needs. Like the desktop solutions, some cost and some are free. These tools work by encrypting passwords you enter into your browser and saving those encrypted passwords on a server.

Sun, 04/27/2014 - 19:27

KeePass screen captureThe first part of this series is here.

Sun, 04/27/2014 - 19:21

How many accounts do you have – one, five, ten, twenty or more? There are accounts for email, online banking, games, shopping, retirement, entertainment, Facebook, work, networking, blogging, and others. Many of these categories have multiple accounts. You know that you should use complex passwords, but complex passwords are hard to remember so you reuse the same password for many of these accounts. You are not alone.

Sun, 04/27/2014 - 20:47

Firefox, Chrome, and other browsers have had anti-fishing mechanism for a couple of years. These browsers prevent users from going to know phishing sites unless each site is specifically approved. Crackers have found a method to bypass browser security by using email.

Sun, 04/27/2014 - 20:58

Faebook 'Like' buttonFacebook allows you to "like" a page, post, picture, or almost anything else. When you like a page, a notice gets posted to your wall. This applies to both Facebook and external pages. Facebook also gives external page authors a widget to add to their page that makes liking the page easy. When you click on that widget, Facebook records that fact, puts a notice on your wall and increments the 'like' counter for that page.

Tue, 04/29/2014 - 18:36

Your tired and tired of working in your office, so you head down to the nicest Starbucks in your area to get a coffee. The shop has got a few other people in it like you - waking up from a low point in the afternoon. You notice that several of the people have laptops, but there is a nice table near an outlet so you can plug in if you need it.