On April 21, 2010, beginning at approximately 14:00 UTC, millions of computers worldwide running Windows XP Service Pack 3 were affected by an erroneous virus definition file update by McAfee, resulting in the removal of a Windows system file (svchost.exe) on those machines, causing machines to lose network access and, in some cases, enter aContinue reading
The hacks are troubling in that they appear to have rendered useless supposedly sophisticated Defense Department tools and procedures designed to prevent such breaches. The department and its branches spend millions of dollars each year on pricey security and antivirus software and employ legions of experts to deploy and manage the tools. […] Equally troublingContinue reading
I was writing an assignment for a class on Information Security, when I came across this little gem. As soon as I read it I laughed and thought of all the times my Dad said that he never did anything to the computer, it just broke on its own. Dad – you are great! AndContinue reading
Hushmail, a Canadian company providing email security using PGP, has released to the US government unencrypted email communications. This respresents a violation of users’ trust in the company. I had an account with them, I will delete all my mail, and close that account. I will only trust my own computer for safe email sending/receiving.Continue reading
Typically, when you ‘delete’ a file, you are only detaching the link from your filesystem to the actually binary data on the physical platters of your hard drive. The data aren’t really gone. The filesystem declares this space as ‘free’ or ‘available’, and so only goes away when that space is overwritten by new data.Continue reading
If you know what PGP is (or GPG for you *nix folks) then go ahead and download my Public key to use for encrypting data to me, or to verify any signed messages. Can you believe that my Cryptology and Security professor does not have a public PGP key?