Roundup for the week ending 6th May 2016. Remember Orange Tsai wrote about how he hacked Facebook as part of their Bug Bounty program and found evidence of another hacker. Violet Blue digs a bit deeper to see how far the rabbit hole goes.  This looks so cool - Build a Raspberry Pi-Powered Linux Laptop … Continue reading Things I hearted last week →

Following yesterday's video, a couple of people asked whether the "Hacker Party" song was actually a full-length song. I can neither confirm nor deny that Host Unknown is working on a full music video for this. But here's the track extracted for those who asked - it's a rough sample, so nothing we'd use in … Continue reading Hacker Party →

Someone dropped me an email a couple of days ago asking how one can best balance out all the things they want to achieve and learn professionally with limited time. I think this is a deeper question than he may have realised. Because time is our most valuable commodity and you don't want to look … Continue reading Doing all the things you want to do →

Roundup for the week ending 29th April 2016. BAE systems published a write-up on the hack against the Bangladesh Bank SWIFT system. Hacked Firm Cares More About Its Users' Security Than Its Image. Could this become a thing? Grab a coffee and set aside a few minutes to read this. A Leak Wounded This Company. Fighting … Continue reading Things I hearted Last Week →

One of the best kept secret conferences over the last decade has been the Rocky Mountain Information Security Conference (RMISC). At least, I assume it's been a secret because I wasn't aware of it earlier. The reason I'm so interested in the Rocky Mountain Information Security Conference is that this year they kindly invited me … Continue reading Heading to the Rocky Mountains →

Nice short writeup of a BGP hijack event that took place. Steve Ragan at CSO Online has written about why the Hacking Team postmortem is something all security leaders should read. How I hacked Facebook, and found someone's backdoor script. Writeups like these really show the benefit of bug bounty programs. Of course Congress is clueless … Continue reading Things I hearted last week →

Spies rejoice! Gmail, Facebook Messenger, Breached once again Dell compiles a list of current hacking prices. Interesting analysis of the price trends over the last 3 years with most prices going up. The economist has an in-depth piece on how the AI industry is booming with Tech firms luring AI experts from universities with big salaries … Continue reading Things I hearted last week →

Interesting article on challenging bad behaviour by a video game company This is a new form of scriptless attacks, using HTML5. Basically if you can inject HTML but not JavaScript, the site is still at risk. Whatsapp turned on encryption for it’s <Dr. Evil voice> ONE BILLION users </Dr. Evil voice> From Bill Brenner over … Continue reading Things I recently Hearted →

Most of the time I don’t put an awful lot of emphasis on awards and lists. Now don’t get me wrong, I am truly appreciative of all the awards and recognition I’ve received over the years. I even have the words “award winning” plastered at the top of the website. But that’s really a cyber-peacock … Continue reading Prepare to be influenced →

The folk at Cloudflare posted a blog detailing the trouble with Tor citing a trade-off needed between security, anonymity and convenience. Reddit has removed its warrant canary for its transparency report for 2015. It can only mean one thing - investigators are after user data and Reddit is gagged from openly discussing the matter. It … Continue reading Things I recently hearted →