NopSec

DECEMBER 4, 2014

Heartbleed (CVE-2014-0160) is a vulnerability with a CVSSv2 base score of only 5.0/10.0. Though its CVSS score is relatively low, Heartbleed has definitely been one of the most severe security events the Internet has never seen. It is found in the Open SSL cryptographic software library, which is omnipresent on the Internet, and it exploits a buffer over-read weakness in the library, a situation where more data can be read than should be allowed ( [link] ).

Risk 52

Risk Internet Internet Software 52

Privacy and Cybersecurity Law

DECEMBER 1, 2014

The recent IAPP Congress in Brussels provided a platform to bring out the “big guns” on privacy. Needless to say, […].

40

40

NopSec

DECEMBER 14, 2014

Usually I am not particularly a big fan of security doom scenarios, but looking at this week’s security news and the usual New Year’s security predictions I have to admit that I grew a bit concerned about the overall info security outlook. Here is the canvas: Sabotage attacks from Iran targeting US industrial control systems and critical infrastructure modeled after Stuxnet, Duqu, and Wiper are growing in frequency.

Passwords 40

Passwords Retail Mobile Encryption 40

Privacy and Cybersecurity Law

DECEMBER 22, 2014

Earlier this year we told you that Canada’s Anti-Spam Law (CASL) is not just for Canadians. CASL is also not just […].

Software 40

Software Marketing 40

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Privacy and Cybersecurity Law

DECEMBER 2, 2014

The Article 29 Working Party published new Guidelines on the Right to be Forgotten on 26 November 2014. This is […].

40

40