I faced a strange feeling a few days ago… I received a notification from a colleague about a scheduled upgrade of the SSL VPN solution deployed by my company. As I’m a mobile user, I use this SSL VPN daily (and often more than 8 hours a day!). The upgrade
Censorship Does Not Increase Security!
ENISA published in September 2009 a press release about the huge increase in ATM fraud. The title spoke by itself: “Annual cash machine looses in Europe approach EUR 500 million: ENISA provides advice for consumers.“ The last talk scheduled during HiTB Amsterdam last week was canceled and replaced in last
Hack in the Box Day #2 Wrap Up
Second day is over! And with the same fun as yesterday. After a (too short) night, some coffee was welcome just before the keynote presented by Mark Curphey from Microsoft. Mark revealed 10 crazy ideas that might change the information security industry with a little cost in money but a
Hack in the Box Day #1 Wrap Up
The first day of the HiTB security conference is already over! HiTB (“Hack in the Box“) organizes conferences for a while in Dubaï and Kuala Lumpur but this is the first time that an event is held in Europe and not too far from Belgium. I left home very early
Live Hall of Shame on French Television?
This frozen picture comes from a reportage broadcasted today by TF1, a major French television channel. On the white board behind the women, we can clearly read an URL and the associated credentials. This a excellent example of “don’t do this” to be used during security awareness trainings! Source: zataz.com
The Cloud is (Sometimes) Your Best Friend!
Everything has been said about the “cloud”, or more precisely, “cloud computing”. Like any new technology, there are pro and con, good and bad things. BTW, the cloud is not so new. For a while, lot of organizations already used a cloud infrastructure but it remained a “private cloud”. Since
Protect Yourself or Be Protected ?
A news coming from Australia became a hot topic in lot of security forums and mailing lists today. The Australian authorities brainstormed about new ways to fight the cyber crime. One of the submitted project is forcing people to install (and activate!) an anti-virus software to be able to access
iOS4 from a Security Point of View
The brand new firmware for the iPhone announced by Apple a few weeks ago is publicly available since yesterday. Called “iOS4” (special dedicace for cisco.com), it includes more than 100 new features like multitasking, folders, etc. I won’t review them here, there are multiple complete reviews already available online. Google
La “Nuit Du Hack” in Paris
Yesterday, I made a trip to Paris to attend the “Nuit du Hack 2010“. It was already the 7th edition. The event, organized between 16h and 7h, was split in two parts: a set of talks about security topics and, starting from midnight, a CTF contest. I had the chance
OWASP BE Meeting about SQL Injections’ OR 2=2;
Surprise! The OWASP Belgian Chapter sent a late notification to announce an extra chapter meeting with a special guest: Joe McCray from Learn Security Online. Today’ topic was “Advanced SQL injections“. Joe is a well known security specialist with high skills in penetration tests. He was in Belgium to provide