A brute force attack is a common way to discover user passwords or keys. The goal is very simple: try all possibilities until a successful authentication is accepted by the server. Simple and easy, with the power of recent CPU’s, easy to launch! The number of probes is directly related
Category: Websites
Belsec Turns One!
Belsec turns one! Happy Birthday! Follow the online event tomorrow via Twitter!
Good Security Feeling
Today, I started the procedure to change my domain registrar. My final choice was to move it to OVH, a well-known French registrar. Once the procedure started, I received my credentials, all the welcome messages and the whole pack of information. I immediately logged in my manager to track the
Don’t Drink and DriveWrite E-mails
Are you like me? You read e-mails, Twitter and RSS feeds every time. Example, why I’m back at home after a party or an event, I always have a quick look at my mailboxes. But sometimes, you drank too much and it’s clearly not the right moment to start a
Unresolvable Captcha!
I read a story (in French – translated here) about a French ISP which uses an online form protected by an unresolvable Captcha! Funny but frustrating if you really need to contact them! Check out the form and feel free to test it: http://faq.1and1.fr/contact/1.php.
Secunia Opens Exploits e-Shop
Secunia announced in its blog a new service: “One Stop Exploit Shop” To resume, they will propose exploits and security breaches PoC to security professional trough their website against some $$$. As stated in the announce, after approval by Secunia (at least!), vendors and companies will have access to the
eBay Protects iPhone Buyers
The new iPhone launched two months ago was a real worldwide success. It was difficult to find one and quickly waiting lists were set up to buy the precious gadget… To protect the buyers against false iPhone available stocks, eBay increased the protection level to fight fake announces: To sell
Phone Call Strong Authentication
OpenID is a free service which offers strong authentication to websites (already covered by a previous post). Strong authentication is based on a two factors authentication: something you know, something you have or something you are (more details here). Trustbearer offered strong authentication via, as example, the Belgian eID Card.
Bud Has Mail
Often, a video is the best way to train people or promote some best practices. Watchguard released some nice video tutorials about security. Like the French children books “Martine” (You know “Martine goes to the market“, “Martine visit her friends“, etc), we follow the adventures of Bud, a dummy regular
eBay Will Track Your IP Addresses
Like many of us, I’m an eBay user. Regularly, I buy or sell unused or deprecated stuffs. eBay (as Paypal, same group) should be one of the most targeted attacks (phising, fraud, …). Today, I received the following alert in my eBay mailbox: Like Google did recently, eBay will start