Security Balancetrying to bring balance to the Force |
 |
Here I am going to Las Vegas for Black Hat and DefCON again! It’s funny that this time I have really lower expectations for the event. My feeling from the last news in the field is that it’s too much the 0-day of the week and buzzword contest (APT/Cloud). Anyway, it’s always the place to [...]
As everybody in the field had predicted, malware targetting SCADA system has finally come true. The lucky thing is this one is looking for information to steal only, not actually doing anything. I wonder what outcome could we have if this nasty little thing was designed to force systems to fail. SCADA systems are one [...]
It’s good to see that Visa is putting additional pressure for truncation and tokenization of card numbers. However, “PCI DSS solutions” in general cost money that the merchants and service providers in general don’t want to spend. They make sense from a technical point of view, but they incur in costs that would eventually drive those [...]
I was reading Schneier’s blog Today as he posted an old text he published on Dark Reading back in 2006, about Cryptography usage. It’s interesting how an article of four years ago is still very relevant. I’ve been seeing some cases where people considers encryption as the most appropriate control to implement, when access control [...]
