Information Security

This morning when I logged into my workstation, I found that one of my putty sessions to my AWS server had gone "inactive", I looked at the content of what was on the screen and I saw:

Broadcast message from root@ip-10-166-###-###
        (unknown) at 10:08 ...

The system is going down for reboot NOW!
Control-Alt-Delete pressed

Martin McKeay has an article Write to learn, learn to progress where he talks about his history of blogging and how it has helped his career, this is a very good post with many good points. I've halfheartedly been blogging since 2004 and one thing I've realized is in order to be a good blogger and get "followers" you need to read other peoples blogs and contribute to ongoing "conversations".

Some of the interesting news articles in regards to Information Security this week, read more for details

• XSS vulnerability in Skype could allow 3rd party to change passwords
• Undersea communications cables are cut every 3 days
• Apple iOS 4.3.4 release & Jailbroken
• FBI Arrest 14 in relation Anonymous / PayPal case
• Internet Activist Aaron Swartz Charged in M.I.T. Data Theft
• Anonymous Claims Hack of NATO, Sends Warning to FBI
• BING DNS hijacked? SANS says it looks like it
• Three pizza chains ATMs hacked

Government Technology website has an article about an information security challenge:

Today has been a big day for news in the Information Security. The Department of Justice has the news on their own website regarding "Sixteen Individuals Arrested in the United States for Alleged Roles in Cyber Attacks More Than 35 Search Warrants Executed in United States, Five Arrests in Europe as Part of Ongoing Cyber Investigations"  

Yesterday was the 2011 Cornerstones of Trust conference in Foster City, and we had a great turnout. There were 29 sponsor booths from various information security vendors. Four great tracks that were mostly full.

During one of the track session that I attended during the event was the Computer Incident Response Planning session presented by Neal McCarthy.

I am still seeing and hearing a fair amount of tweets and speculation about what the RSA Breach that was announced by Art Coviello, Executive Chairman, RSA.

There seems to be a lot of people worried about this particular breach stating that the RSA SecurID tokens have become "useless" or advocating that you request that RSA replace every one.

If you're a member of the Information Security community, you're probably already aware of the breach that occured to RSA Security with regards to their SecureID Token two-factor authentication solution is used by millions including government and private sector organizations.

Over the weekend, I started to integrate my website EdwardFrye.com into social media sites and added icons to the site so you can find me on those social media sites like Twitter, Facebook, LinkedIn, etc.

Now I have enabled my website so you can sign into it using your Twitter or Facebook account to post comments directly on my site if you want.