Category Archives: Security

Facebook Security Vulnerability – Is it really that simple?

So last night I received an email invite from some random person on Facebook who I don’t know. These are the sort of emails which I usually receive but hardly pay any heed till this one happened: Step 1: Received … Continue reading

Posted in Security, Web | Tagged , , | 1 Comment

Currently Reading

How to Sell Security: If you want to sell security, a leading expert advises, you have to turn it into something people actually want to buy. Security Engineering – The Book: If you’re even thinking of doing any security engineering, … Continue reading

Posted in Security, test | Leave a comment

PCI DSS 6.6 Supplement

PCI SSC finally released “Information Supplement: Payment Card Industry Data Security Standard (PCI DSS) Requirement 6.6 Code Reviews and Application Firewalls” that would clean some air on how much application security is really required for PCI DSS compliance. I have … Continue reading

Posted in Security, test | Tagged | Leave a comment

Johny Lang

I have read a lot of material on Johny Lang and stuff written by him, but I have never come across an article as lame as this. Someone please tell the author that penetration testing is different from data stealing!

Posted in Security, test | Leave a comment

Blackberry In India: Beware!

Indian government either needs a session on risk perception. It has this tremendous capacity to recognise a threat from a cow to a smartphone. The way things are turning out in India, we will soon see DoT ordering NIC to … Continue reading

Posted in Security, test | Tagged , , | Leave a comment

Learnings from India: How not to secure personal data

The last few years have seen alarming rise in demand for security products and services within India especially related to data security. Be it firewalls, VPN boxes and encryption solutions, or ISO 27001 and SOX consulting, the demand has only … Continue reading

Posted in Security, test | Tagged , | Leave a comment

419 Spam

While browsing through generic masala news on rediff.com, I stumbled upon a piece on social engineering that talks about a case of double attack. For people who thought social engineering was limited to a 419 type email seeking your account … Continue reading

Posted in Security, Web | Leave a comment

Google & Privacy

The much knowledgeable computer hardware geek Chris has written a blog post on Google and Privacy. A subject that has taken up most of my free time for the last few weeks. A subject that I have been most inclined … Continue reading

Posted in Research, Security, Web | Tagged | 1 Comment

Google Maps Street View and Privacy

Not many people are happy with Google Maps Street View’s street level cameras that show pictures of people at various locations. The pictures were clearly taken without the consent of the subject, and hence have raised eyebrows in many of … Continue reading

Posted in News, Security | Leave a comment

Microsoft IE7 rendered useless

In a blog posting, Christopher Budd, Program Manager, Microsoft Security Response Team (MSRC), said the problem is that after applying the update, users may see a “File Download – Security Warning” dialogue box raised when starting IE. And after they … Continue reading

Posted in Security, Web | Leave a comment