From time to time we develop simple applications or tools to help address specific business requirements, or to highlight a piece of security research. Today I’m excited to announce the release of SmartShare, a free tool designed to offer developers, bloggers and marketers a more secure method of on-site bookmark sharing.
Building airplanes and software applications are very different. Except when they’re not. How the software industry can learn from aviation’s culture of safety.
Imagine this not-too-unusual scenario: on February 1st, security firms identify a string of sophisticated attacks against prominent firms in the defense industrial base, energy and high tech fields.
Just another day at the office. Anonymous hacked into a Federal Reserve computer. Wait, what? Don’t worry, the attackers did not make off with any money, as far as we can tell, or disrupt any critical functions. What did they get? Just the details of 4000 bank executives. The data has been posted to pastebin and hosted on several compromised sites including other government sites. Someone even sent me a link to the data hosted on a gov.cn server!
Many years ago, you got your first job and bought your first car. It was a reasonable price, sturdy, and you made sure always to wear your seatbelt and not to break the posted speed limit too badly. It did its job and served you well as you went to college and started your career.
For our government readers. I want to briefly draw your attention to the newly signed Department of Defense National Defense Authorization Act (NDAA) of 2013 and the revised Federal Information Security Management Act (FISMA).
Why is so much software so insecure? You can blame Mark Zuckerberg. No. Really.
Here are a couple, seemingly contradictory facts: we, as an industry, understand much, much more about how to write software securely today than we did ten years ago. And – fact number two: there’s far more, insecure software being written today than there was ten years ago. Why?
A few days ago Duck Duck Go, the search engine that advocates privacy and opposes tracking of any sort, released an awesome guide for Data Privacy Day. Their guide outlines how to prevent your browser from tracking you in any way possible.