@richard-mu
Active 4 years, 5 months ago-
Fraser G's profile was updated 6 years ago
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 11 months ago
Last week Matt Blaze gave a presentation before congress related to hacking elections. I have linked both the article and the testimony. The testimony is interesting to read and isn’t very long, here is an […]
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 11 months ago
This week is all about authentication, and I have two related articles about authentication:
and
In short, Facebook is testing a captcha test that requires the user to upload a selfie to authenticate, and in […]
-
Fraser,
I do believe protecting usernames and passwords very important to insure the continuity of any business. We will continue seeing new methods to access our accounts. In my opinion, some arts to produce and design new login methods will be very helpful to break down the algorithms that attackers develop everyday to attack people.
-
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 11 months ago
Another article about Equifax, ho-hum. Except this one is the BEST summary of the attack I have found that is accessible to people who don’t have a lot of technical expertise but know a bit about cybersecurity a […]
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 6 years, 12 months ago
Curve25519 and Curve448 will be added to the NIST SP 800 this year as new curve schemas for elliptical curve encryption.
Curve25519 is an elliptic curve Diffie–Hellman and uses the equa […]
-
Hi Fraser:
Great post! I think the curve encryption is very important to both business companies or government. By adding Curve 25519 and Curve 448 definitely will help the organizations gain a better understand of how to encrypt their documents
-
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
Interesting article about security related to CA’s and private equity. It sounds like this industry is a target for consolidation, or at least a shakeup with the private equity guys getting involved. In […]
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
This article is a demonstration of why you should always be very careful when sharing any information publicly. The authors of this article detailed a process of image correction and QR code “hacking” to figure […]
-
Fraser,
Your article is quite interesting and upon reading I was actually shocked to see such threats possible. You are right when you say that Information should not be disclosed publicly, but practically it is impossible for high profile people to not disclose or hide everything. The Image correction of QR code hacking is pretty shocking because if we consider China or United States, these countries use digital QR currency payments in almost 90% of their every transactions. How much will QR code hacking unfold itself further and what will be its impact across different channels that use QR code or user’s Identity codes for validation?
-
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
WPA2 encryption has been compromised. KRACK Attacks or Key Reinsallation Attack allows hackers to decrypt packets in Wifi traffic and … “use this novel attack technique to read information that was […]
-
This is pretty scary since WPA2 is the wireless security currently in place for almost all Wi-Fi networks. I know at Verizon old routers still operate on WEP and they applied a firmware update to make sure they operate on WPA2 or we replace it. But to hear it has been cracked, make me a little paranoid about my info I send over the network and if someone is trying to crack it.
-
Frazer,
I read about this yesterday as well. It is a bit scary, but the patch was released and “fixed”. This is a man-in-the-middle attack. This is a big issue, but the problem for the “bad guys” is that they would have had to been in your WiFi range to get any of the information.
Add a compensating control to your house and do a quick search of the WiFi perimeter before sending sensitive data… But I guess that would mean when someone is walking around their house, they may be about to use their credit card on-line. We can’t win…
-
I hear you Fred. I already patched my WAP and router with the latest beta drivers. Getting others to patch is the big problem… I wonder if Starbucks is already updated? How about hotels? Lots of opportunities for bad actors.
-
-
Hi Fraser:
Interesting article but at he same time pretty scary because WPA 2 is the wireless security for most of Wi-Fi.
-
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years ago
This article from Threatpost.com details Formbook, a malware that can be spread in PDFs, DOCS and XLS files. The malware has been on sale since July for the low price of $29/week. It is primarily a data stealing […]
-
This is a really interesting article. I think that the biggest thing was the people that they were going after. IT was people who most likely had higher level security clearance and could cause information that if, in the wrong hands could be a really big problem.
-
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years, 1 month ago
Russia have been given the source code to ArcSight, a cyberdefense system used by the Pentagon and US intelligence. Experts and former employees say the source code review is a huge security blunder:
“Six former […] -
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years, 1 month ago
Deloitte hacked, says ‘very few’ clients affected
Deloitte was hacked as early as last year, according to sources quoted by Reuters. The consulting company – a “big 4” – serves 80% of the Fortune 500, […]-
If Equifax was hacked earlier this year and Deloitte was last year, why are we just hearing about this now? Just curious – are their standards of revealing when the period of a hack more strict or less strict and why? Food for thought
-
Good question! Probably all managed by lawyers and PR specialists, who abide by whatever regulation is in place.
-
Neil,
The answer to this question is very important. In my opinion, these companies don’t want to announce these incidents at the time they get attacked, I think they like to know the consequences first and how much damage these attacks can result.
They are big organizations that deal with sensitive information all the time, they know the reaction of their clients who keep them having business won’t be good for their businesses. The impact of this announcement in the beginning of the year will be very bad since they companies like Deloitte start new projects in that time of the year. The impact will be very low if they announce these attacks in the end of the year.
-
-
Fraser G and
Richard Mu are now friends 7 years, 1 month ago -
Fraser G and
Shi Yu Dong are now friends 7 years, 1 month ago -
Fraser G's profile was updated 7 years, 1 month ago
-
Fraser G changed their profile picture 7 years, 1 month ago
-
Fraser G created the site Fraser Greenwood 7 years, 1 month ago
-
Fraser G wrote a new post on the site Fraser Greenwood 7 years, 1 month ago
Welcome to my E-Porfolio. I will have limited posts here but you can contact me via email to get in touch.
-
Fraser G wrote a new post on the site ITACS 5211: Introduction to Ethical Hacking 7 years, 1 month ago
Source: http://time.com/4828306/russian-hacking-election-widespread-private-data/
Election Hackers Altered Voter Rolls, Stole Private Data, Officials Say
This article is a synopsis of hacking efforts in the 2016 […] -
Fraser G's profile was updated 7 years, 2 months ago
