Within 2 months over 230 million accounts have been breached

Posted on October 1, 2018October 20, 2018 by Keith Marlow

The last 2 months have been a busy time for hackers; we look at what they have been doing and what can be learnt from them to improve computer security.

Share on Tumblr

User Authentication, you must do it right!

Posted on May 19, 2017November 16, 2017 by Keith Marlow

I must admit, one of my all time pet peeves is when engineers do not implement their user authentication service in the right way to be defendable against an attack. Take for the instance the recent hack against Zomato in which they had 6.6m hashed user passwords stolen. The real problem here is not that the[…]

Share on Tumblr

Online Security and Hungry Caterpillars – they have a lot in common…

Posted on November 20, 2015April 11, 2016 by Keith Marlow

Websites or online services come under constant attack from hackers using automated scripts, if left unmanaged such attacks can consume sufficient resources to impact your quality of service, negatively impacting your brand. This article explains why this is a major problem and what the solution is. Online Security Matters, Dictionary Attacks are everywhere Every online[…]

Share on Tumblr

New security flaw in OAuth and OpenID found

Posted on May 5, 2014 by Keith Marlow

This new flaw, called the Covert Redirect flaw, was first reported by a Singaporea PhD student in mathematics from Nanyang Technological University. The Covert Redirect flaw is not so easily patched as heartbleed… What is the Covert Redirect flaw? The flaw allows hackers to modify the process of logging into a site, silently redirecting people to dangerous websites[…]

Share on Tumblr

Common Security Mistakes That Business Website Owners Make & How to Avoid Them

Posted on April 10, 2014 by Keith Marlow

Cybercriminals and Internet fraudsters are singling out e-commerce sites and blogs of small businesses for their unscrupulous attacks. Nevertheless, as a business website owner, you can enact some simple precautions to thwart the evil designs of these unwanted intruders. The “Fort Disco” Botnet’s Brute-Force Tactic Both small business networks, as well as, their websites are[…]

Share on Tumblr

Mt. Gox Bitcoin Exchange to File for Bankruptcy Protection

Posted on March 1, 2014March 1, 2014 by Keith Marlow

It appears that Mount Gox, the Bitcoin exchange that got sucked dry by hackers earlier in the week (it lost almost 750,000 of its customers’ bitcoins, see my previous post) with debts of $63.6 million is to fill for bankruptcy protection. As I said before, the whole virtual currency space, more so than real currency, its critically[…]

Share on Tumblr

Is Bitcoin finally busted??

Posted on February 26, 2014February 28, 2014 by Keith Marlow

According to the media one of Bitcoins exchanges got hacked so badly they had to go off air as a result. Which is quite shocking when you think about, one act of hacking took down a whole monetary exchange system… For those of you wondering what on Earth Bitcoin is – it’s a purely virtual[…]

Share on Tumblr

Hackers want your business website data!

Posted on April 13, 2013February 3, 2014 by Keith Marlow

According to reports (see here & here), hackers are becoming a lot smarter in how they attack websites. Rather than trying to individually attack each website they have recognised that standard frameworks are being used to create and maintain websites and thereby making it somewhat easier to attack a whole class of websites ‘en mass’[…]

Share on Tumblr