Thomson Reuters Latest Casualty of Twitter Account Hacks
For quite awhile now, we have been following several stories related to the hacking of Twitter accounts. And this week, the newsfeed is inundated with information that the hackers have indeed struck again. And yet again, it’s the Syrian Electronic Army causing social media mischief. While the Associated Press was a major victim of social [Read More...]
Twitter Login Verification Announced
In case you hadn’t seen the news, Twitter login verification was announced yesterday. While I certainly don’t want to praise Twitter for implementing second-factor authentication login long after they knew a problem existed, it does remain a solid step in the right direction.
Inside a Twitter Attack: How Hijacked Twitter Accounts are Falling Victim to Digital Theft, Influencing Global Markets
Recently, we have seen a rash of high-profile takeover attacks on Twitter accounts. These Twitter attacks are targeting Western news organizations, but some organizations outside of the news realm (e.g., Burger King) have also come under attack.
AP Twitter Hack Sends Stock Market into Plunge
The AP Twitter hack lead to a sudden drop in the Dow Jones Industrial Average after the perpetrators sent out a tweet about an attack on the White House
Entrust at RSA: Welcome to San Francisco
Greetings from the Bay Area. Entrust is live at the Moscone Center for the opening night of RSA Conference 2013. If you weren’t able to make it out to the West Coast, we’ll have you covered right here on the Entrust Insights blog.
A Few Thoughts After the Gartner Identity and Access Management Summit
Last week, I attended the Gartner Identity and Access Management Summit in Las Vegas with Entrust product manager Dave Mahdi.
Twitter Latest Victim of Weak Password Breach
Today, it’s Twitter who fell victim to a breach from weak passwords
Stopping CRIME Attacks
This article by Dan Goodin appears to cover the most facts about the CRIME attack on SSL/TLS. It answers my first question about what the acronym means; CRIME is short for “Compression Ratio Info-Leak Made Easy.” It also confirms the attack is performed when the communication uses TLS compression. My understanding is that TLS compression [Read More...]
Sophos Breach Tied to Partner Portal
Security Week reports in, “Sophos Kills Partner Portal After Suffering Breach” that the security firm Sophos has disabled its partner portal after discovering a breach. They aren’t saying much yet — kudos to them for their disclosure and response — but they think that the breach came from an older part of their portal, and [Read More...]