Are you like me? You read e-mails, Twitter and RSS feeds every time. Example, why I’m back at home after a party or an event, I always have a quick look at my mailboxes. But sometimes, you drank too much and it’s clearly not the right moment to start a
Tag: Website
Don’t Drink and
Unresolvable Captcha!
I read a story (in French – translated here) about a French ISP which uses an online form protected by an unresolvable Captcha! Funny but frustrating if you really need to contact them! Check out the form and feel free to test it: http://faq.1and1.fr/contact/1.php.
Secunia Opens Exploits e-Shop
Secunia announced in its blog a new service: “One Stop Exploit Shop” To resume, they will propose exploits and security breaches PoC to security professional trough their website against some $$$. As stated in the announce, after approval by Secunia (at least!), vendors and companies will have access to the
eBay Protects iPhone Buyers
The new iPhone launched two months ago was a real worldwide success. It was difficult to find one and quickly waiting lists were set up to buy the precious gadget… To protect the buyers against false iPhone available stocks, eBay increased the protection level to fight fake announces: To sell
Bud Has Mail
Often, a video is the best way to train people or promote some best practices. Watchguard released some nice video tutorials about security. Like the French children books “Martine” (You know “Martine goes to the market“, “Martine visit her friends“, etc), we follow the adventures of Bud, a dummy regular
eBay Will Track Your IP Addresses
Like many of us, I’m an eBay user. Regularly, I buy or sell unused or deprecated stuffs. eBay (as Paypal, same group) should be one of the most targeted attacks (phising, fraud, …). Today, I received the following alert in my eBay mailbox: Like Google did recently, eBay will start
Google Safe Browsing
Google is never miserly in innovations. Their labs is full of nice tools for all of us. Google Safe Browsing is a tool which helps you to identify potential unsafe websites. Queries are in format: http://google.com/safebrowsing/diagnostic?site=<your url> Example: http://google.com/safebrowsing/diagnostic?site=blog.rootshell.be.
A Chronology of Data Breaches
After the Bank of Ireland, the Ulster Bank also loose notebooks with customers information. Data breach becomes more and more an issue today: As all our personal data are stored in electronic form, it’s easy for employers to take data away to work at home or attend external meetings with
CAPTCHA Me if You Can!
“CAPTCHA” ? What’s this? Everybody already used CAPTCHA (or “Completely Automated Turing Test To Tell Computers and Humans Apart“). You know those pictures made of deformed letters that you need to understand and type in a specific field to perform some operations like creating some accounts, authenticating, etc. Almost all
OpenID – SSO for the Mass
User authentication is a key component of security practices. To allow certain operations in your websites, you first need to authenticate the user. To achieve this, there are plenty of methods. The most common is the login / password pair. Not the most secure but quite easy to deploy. One