Michal Zalewski (aka lcamtuf) has just announced that google is changing the terms of its vulnerability purchase program. The google announcement says: Today, to celebrate the success of [the program] and to underscore our commitment to security, we are rolling out updated rules for our program — including new reward amounts for critical bugs: $20,000 …
I am not a cliche
“all your snacks are belong to us”
webcam on the slug
trivia’s visitors
the latest from El Reg
- 'Dated and cheesy' Aero ripped from Windows 8 2012/05/21
- Google snubs Euro watchdog's 'abuse of dominance' claims 2012/05/21
- ALL NHS patient records online by 2015 2012/05/21
- IBM parks parallel file system on Big Data's lawn 2012/05/21
- NVIDIA VGX VDI: New tech? Or rehashed hash? 2012/05/21
- Audi proposes PC-packing stunt bikes 2012/05/21
- Met cops' CSI mobe-snoop tech sparks privacy fears 2012/05/21
- Does private cloud follow virtualisation? 2012/05/21
- IP law probe MPs hunt for smoking gun, find plenty of smoke 2012/05/21
- Nasdaq red-faced after software snafu stalls Facebook IPO 2012/05/21
- Core Wars: Inside Intel's power struggle with NVIDIA 2012/05/21
- Ouch! Facebook falls below IPO value in pre-trading on Nasdaq 2012/05/21
- What's copying your music really worth to you? 2012/05/21
- Brussels throws antitrust settlement lifeline to Google 2012/05/21
- Resistance is futile? Memristor RAM now cheap as chips 2012/05/21
- Another NHS trust coughs up £90k fine for lax fax acts 2012/05/21
Category Archive: network (in)security
Apr 18 2012
now switch it back on
Bugtraq can be an interesting list. Back in June 2008 I noted that one Craig Wright had posted an advisory about a vulnerability in an Oral B toothbrush. Well, just over a week ago a chap called Gabriel Menezes Nunes posted a proof of concept remote denial of service attack on a Sony Bravia television …
Mar 06 2012
banking stupidity
When I logged on to my new bank site this morning, I tried the “help” offered on the opening screen just to see what they had to say about the range of options available. I was not best pleased to be greeted by the message “Flash is not installed, is not enabled or is not …
Jan 22 2012
moxie’s proxy
Moxie Marlinspike, a security researcher probably best known for his SSL proxy tool, likes google even less than I do. His googlesharing website says: “Google thrives where privacy does not. If you’re like most internet users, Google knows more about you than you might be comfortable with. Whether you were logged in to a Google …
Jan 12 2012
t-mobile resets its policy?
As I have mentioned in other posts here, I run my own mail server on one of my VMs. I do this for a variety of reasons, but the main one is that I like to control my own network destiny. Back in October last year I noticed an interesting change in my mail experience …
Dec 20 2011
the amnesic incognito live system
Or “tails” if you prefer, is a live CD/USB distribution based on debian which aims to help you preserve your privacy and anonymity when out and about. As the home website says, tails helps you to: use the Internet anonymously almost anywhere you go and on any computer: all connections to the Internet are forced …
Dec 19 2011
tunnelling X over ssh
OK, yes, I know there are probably already a gazillion web pages on the ‘net explaining exactly how to do this, but I got caught out by a silly gotcha when I tried to do this a couple of days ago, so I thought I’d post a note. Firstly, X is not exactly a secure …
Nov 30 2011
tp-link respond
A couple of weeks ago, I wrote about the problems I had with a TP-Link IP camera. Today I received a comment on that post from a guy called Luke in the TP-Link support team. In that response he apologises for the difficulties I had and promises to investigate further. His response deserves as wide …
Nov 16 2011
do not buy one of these
Standalone IP cameras have come down in price quite remarkably over the past few years. It is now perfectly possible to get a camera for between £50.00 and £75.00, and this makes them attractive for anyone wanting to set up simple “home surveillance” systems. I bought one recently just to see what I could …
Nov 09 2011
do I trust this site?
Following a visit to EFF to read an article on e-book privacy, I met this: So. EFF uses a wildcard SSL cert issued by a company which was breached earlier this year.
why phbs are phbs
the national security debate
are you sure you want that mobile phone?
unix gurus in hell
