So Facebook has made some changes to privacy that I didn’t like much. Thought I’d pass it on. The new change is that if one of your friends uses a Facebook application (any application) and it requests personal information, Facebook will share that information to them without your knowledge. So even if you don’t want [...]
Tags: Facebook, Information Disclosure, Privacy
It has been a busy couple of months, but my posts have been fairly quiet on the blog. Between attending the SANS Security 504 Incident Handling class, traveling for work, moving my family and the holidays things have been moving at a rapid pace. I’m going to be trying to comment more here, but for [...]
Tags: GCIH, Incident Handler, Metasploit, Reconnoiter, SANS
When I first saw this fly by on Twitter (ironic) I thought it was Rsnake joking around. I followed his comment about it over to Vantage Credit Union‘s web site and saw that sure enough, their customers can do limited banking via Twitter. Before I go further, let me state this openly. I like and [...]
Tags: bad idea, banking online, twitter, web security
The last week was really busy while I prepared to do my presentation at the Utah Open Source Conference. While I was engaged in this process I got a message from Larry Pesce of the Pauldotcom Podcast. He had some updates to Reconnoiter and wanted to shoot them over to me. He said that he [...]
Tags: pauldotcom episode 170, reconnoiter project, security tools, social media, username generation
On Friday October 9th at 12:00 PM I will be speaking at the Utah Open Source Conference on how to put together a kit of security tools using open source software. I discuss a fictional company that we work at and some of the things that we can put in place to help secure the [...]
Tags: open source, security tools, utos 2009, utos presentation
