Thursday, June 21, 2012
newyorker: Cartoon of the night. Don’t forget to enter this week’s caption contest: http://nyr.kr/M19BkW

newyorker:

Cartoon of the night. Don’t forget to enter this week’s caption contest: http://nyr.kr/M19BkW

Posted at 9:53pm 213 notes Reblogged via newyorker Tags: tech humor security
Friday, April 6, 2012
TERK ERR SEKYERRIDDY!

[Dailydave] Sympathy for the Devil

Dave rocks.
Posted at 8:28am 1 note Tags: security
Tuesday, March 27, 2012

Schneier on Security: The Effects of Data Breach Litigation

The Effects of Data Breach Litigation

Posted at 10:19am 1 note Tags: security
Saturday, March 17, 2012
a company might want take their database application, that deal with all sorts of corporate critical sensitive data, and then upload and safely run this application on e.g. Amazon’s EC2, or maybe even to some China-based EC2-clone. Currently there is really nothing that could stop the provider, who has a full control over the kernel or the hypervisor under which our application (or our VM) executes, from reading the contents of our process’ memory and stealing the secrets from there. This is all easy stuff to do from the technical point of view, and this is also not just my own paranoia… The Invisible Things Lab’s blog: Trusted Execution In Untrusted Cloud
Posted at 10:57am 3 notes Tags: cloud security cloud security
Friday, November 4, 2011

What’s the difference between VMware vShield and Juniper’s vGW / Altor?

In a word, architecture. The result? Performance. The bottom line: Do you want your server dollars focused on the app or security?

See this overview of the vGW architecture by Ivan at ioshints.com

then check out this vShield vs vGW performance test comparison. (Warning - it’s a pdf)

Posted at 10:48am 8 notes Tags: Juniper Networks security vGW virtualization vmware Altor
Thursday, November 3, 2011

Video screen-spy program can read texts and emails

infoneer-pulse:

NEXT time you’re tapping off a private text message or sensitive email in a public place, consider this: someone could be reading every letter you type from up to 60 metres away.

“We can be in the second floor of a building and read a phone on the ground,” says computer vision researcher Jan-Michael Frahm, of the University of North Carolina at Chapel Hill.

Frahm and Fabian Monrose, also of UNC-Chapel Hill, have built a program, dubbed iSpy, that can identify text typed on a touchscreen from video footage of the screen or even its reflection in windows or sunglasses. Video from an ordinary mobile phone camera can be used to spy on a person from 3 metres away. And a snoop with a digital SLR camera that shoots HD video could read a screen up to 60 metres away.

» via New Scientist

Reminds me of the guys who were scanning for bluetooth phones at RSA a few years ago.
Posted at 10:35am 35 notes Reblogged via infoneer-pulse Tags: security mobile mobile security BYOD
Tuesday, October 25, 2011
Junos Pulse 3.0 for Apple iOS adds support for mobile device management (MDM) and configuration capabilities found in the iOS platform – including enforcing and setting passcode policies, provisioning and removal of Microsoft Exchange profiles, provisioning of VPN and Wi-Fi settings, remote locate and track and remote lock and wipe of lost or stolen iPhones and iPads, and inventory and restriction of applications – allowing Apple iPhones and iPads to be configured and managed over the air (OTA) by the Junos Pulse Mobile Security Suite 3.0.

App Store - Junos Pulse

The new shnizzle in JUNOS Pulse 3.0. Combining mobile security and mobile device management
Posted at 10:34am 18 notes Tags: BYOD Juniper Networks Mobile Security JUNOS Pulse
Friday, February 18, 2011
By amassing information about the kinds of applications and services running on VMs, the vGW sustains deep knowledge about the internal security state of each VM. This information is then made available through the vGW point-and-click dynamic policy editor so that rules can easily be built to enforce a desired VM security posture. A Security Scan We Can All Agree on: vGW VM Intros… - J-Net Community (via irq)
Posted at 5:12pm 2 notes Reblogged via irq Tags: security virtualization Altor Juniper Networks vmware
Saturday, December 4, 2010
I’m a dirty vendor. That may not be the best way to start a serious dialogue about security product effectiveness, but I hate to read a post on security theory by some insincere tie-wearing wonk only to discover afterwards that he or she is Lord High Poobah of Marketing at “Scaring You For Profit, Inc.” So I’ll just tell you who and what I am up front. I may have to wear the tie, but I don’t have to be that guy. Continue at your own risk.

Security Worth Buying | threatpost

Nice intro to an interesting post.
Posted at 8:03am Tags: security
Thursday, August 19, 2010

I leave you with a quick story. Overheard at registration:

Dude, long black hair, black t, goatee, you get the picture : “I want a pass”

Registration Guy: “Great, ID please?”

Dude: “No, I want a pass.

Reg guy: “OK I need your ID and credit card”

Dude: “No, I will pay cash” ($1595 I think)

Reg guy: “Great, cash works, I still need an ID”

Dude: “That’s Bull*&^*!.” Walks away mumbling.

Blackhat is so NOT RSA Conference, need more convincing???

 Marketing In-security: 5 Things I Learned at Blackhat That Marketers Should Know
Posted at 11:51pm Tags: security marketing