Feed

Sinkholed Domains

Posted on June 16th, 2013 in Off Topic by dglosser

Should we list domains which are already sinkholed?

It would be useful if you are  capturing and analyzing information….

However, it does limit the amount of research and data that the legitimate companies will be receiving regarding the sinkholed domains…

Email us your thoughts at 124malwaredomains5@9gmail.3com (remove all numbers)

 

 

 

 

Resources for Hacked Sites

Posted on May 22nd, 2013 in General Security,Off Topic by dglosser

Some nice resources on what to do if your site was hacked:

If you find a nice (noncommercial preferred) resources, let us know and we’ll add it to our list

 

Off Topic: DevOps Reactions

Posted on May 13th, 2013 in Off Topic by dglosser

Off Topic but too funny not to pass on:

http://devopsreactions.tumblr.com/

 

OT: “But it’s Encrypted”

Posted on November 18th, 2011 in General Security,Off Topic by dglosser

At my “real job”,  I’m constantly getting push back from users,  ops people (netadmins sysadmins, etc) and developers about security.  For example:

  • “This isn’t the pentagon”
  • “We can’t do our work”
  • “But it’s encrypted and the key is only by two different people”
  • “You say it’s an security issue but we haven’t been hacked so far so how much of a risk can it be”

At first glance, of these statements seem valid and reasonable (especially when it’s presented to upper management).

When management comes to you with these statements,  these needs to be simple, concise answers (maybe two, for both technical and non-technical users)

How many of you have received these arguments from users?
What other arguments have you received?
How have you responded?   (especially if you “won” the argument and convinced the user and manager)

We’ll collect the responses and summarize. Email us at 12malware8domains789@32gmail33.com33 (remove numbers)