technical – Page 2 – I Am Security

Pentesters and businessman are doing it wrong

Sep 27, 2010

—

by

What we are doing wrong as a security services industry, what businesses are doing wrong when they engage us, and how to fix it

Tying up loose ends before Vegas (scammer closure)

Jul 26, 2010

—

by

iamit

in Opinion, Security Research

Instead of updating the post in question (again), I figured I’ll post all the new info here and call this a wrap. So, we all know about the security scammer now, and the different ways he is working to defraud innocent users and steal their data and money. It has been quite an experience tracking…

How [not to] scam security people

Jul 8, 2010

—

by

iamit

in Security Research

An analysis of a rogue security tool that tries to steal passwords and scam people out of their paypal money and accounts.

DefCon 17 talk video available!

Nov 15, 2009

—

by

iamit

in Opinion, Security Research

DefCon 17 talk video of my talk

Blocking legitimate sites in real-time

Sep 22, 2008

—

by

iamit

in Aladdin, Opinion

I Ran into this on Slashdot: http://tech.slashdot.org/tech/08/09/21/1827209.shtml. It seems like the Google filter for malicious sites was blocking a whole domain name – including all sub-domains, which happened to be a dynamic DNS provider. A Big false positive, and a big problem to all the legitimate sites that were hosted using this domain. Disclosure –…

Tag: technical

Pentesters and businessman are doing it wrong

Tying up loose ends before Vegas (scammer closure)

How [not to] scam security people

DefCon 17 talk video available!

Blocking legitimate sites in real-time