Security Balancetrying to bring balance to the Force |
 |
Do we really need to go that deep into virtualization? I may sound dumb to try to reason against something that everybody is embracing, but that’s usually what I like to do about hypes
OK, you’ll probably throw a lot of advantages of virtualization on me. And I agree that most of them are [...]
I was visiting Dan Kaminsky’s blog today and I noticed that he is creating a community council to help on the disclosure of big vulnerabilities like the one he found on DNS and others that followed, including that famous one on TCP that Robert E. Lee and Jack Louis are planning to disclose after vendors [...]
This is yet another case of predictions coming true; Now it’s Kaspersky time to say that malware is changing the way they attack online banking users to defeat two-factor authentication. Tjey even try to create a new security buzzword for that:
“For example, two-factor authentication for online banking, which uses a hardware token in addition to [...]
I have been away from the blog for a while because of a series of reasons, but I couldn’t avoid to comment on this recently published advisory from Microsoft, MS08-067. Just as some worms we witnessed in the past, this one is related to a core Windows service, meaning that almost all boxes are vulnerable. [...]
My friend Victor is back to the blogosphere. He built a blog platform just for his new blog, Visigodos.org.
He blogs about a series of things, but mostly on software development and security. His last post (VP, you need to develop something to link directly to an specific post!) about vulnerabilities related to debugging code is [...]
