A classic trick is to embed a script or text in a file with different extension. For example, saving a text file as jpg. When the browser comes to look it, it will likely try to resolve it as jpg. But there is a plethora of extensions out there. Some extensions activate applications (e.g. acrobat, [...]
A staggering 12000 laptops are lost or stolen every week at US airports. There is every chance that at least one has some form of confidential information on it or worse that lost laptop holds the only copy of certain corporate information. This is demonstrated by the Daily Mail where a laptop was lost that [...]
A growing technology is VOIP and there are a number of things, you can look for. Ideally, your voice network should be segregated from your data network using VLANs. Traditional phone/voicemail attacks may be used. There are two useful blogs that you may want to look into if you want to find out more, voipsecurityblog [...]
This indirectly concerns the IT security industry but in the UK, there are less jobs going around for computer science graduates as 10% are unemployed after graduation. This seems a little bit strange considering in there is a skills shortage and university intake numbers are dropping.
So why aren’t companies hiring IT graduates? That’s a good [...]
Looks like HSBC has a number of scripting flaws.