Welcome to TechNet Blogs Sign in | Join | Help

February 2005 - Posts

Are ITPROs in the UK familiar with the Term "BlackHat"?

I'm sure you're probably familiar with the term ITPro but just incase you're not then it means people who are paid for Technical work on Information systems. Is the term "BlackHat" familiar to ITPros in the UK? Please hit the "Feedback" button for Read More
posted Monday, February 28, 2005 10:11 AM by Steve Lamb | 20 Comments
Filed Under: , ,

What is RIPA and why is it important to your organisation?

RIPA is an acronym for The Regulation of Investigatory Powers Act 2000 which is a piece of UK legislation governing the right of the authorities to recover information from UK organisations as required for investigations. I am not a legal expert, make Read More
posted Friday, February 25, 2005 3:29 PM by Steve Lamb | (Comments Off)
Filed Under: , , ,

How Microsoft secure our own systems - ITShowCase

Another resource I've mentioned when presenting @ TechNet events is ITShowCase - the following URL is the home of a wealth of information (including "how to" build guides) written by our internal technical administrators and architects when building and Read More
posted Friday, February 25, 2005 3:15 PM by Steve Lamb | (Comments Off)
Filed Under: , , , , ,

Looking for UK security metrics? The DTI Information Security Breaches report can be found here..

I've spoken at a number of TechNet events recently at which I've mentioned the DTI report as a useful source of UK metrics for security breaches and risks. The latest report(released in 2004) is located at the following URL. http://www.infosec.co.uk/page.cfm?HyperLink=http://www.infosec.co.uk/files/DTI_Survey_Report.pdf Read More
posted Friday, February 25, 2005 3:12 PM by Steve Lamb | (Comments Off)
Filed Under: , ,

For those who haven't heard yet there's a way to compute SHA-1 hashes faster than brute force

Bruce's recent article has started a great deal of debate. Clearly the implications for the way cryptographic signatures are relied upon more and more come into question. IMHO the sky's not about to fall down but certainly it's sensible for all software Read More
posted Friday, February 25, 2005 6:25 PM by Steve Lamb | 2 Comments
Filed Under: , , ,

How does Windows Update guard against "fake updates" trojans et al?

A number of people have asked me "can we REALLY trust the Windows Update site? What if it were hacked and fake "updates" were put on for users to download which were actually spyware/viruses/worms and the like? Has it ever been compromised by a 3rd party? Read More
posted Saturday, February 19, 2005 10:53 AM by Steve Lamb | 5 Comments
Filed Under: , ,

Threats Vulnerabilities and Exploits to mobile phones, PDAs, mobile devices and cars as discussed in a report published this week by IBM Security Intelligence Services

I've just read the summary to an IBM Report which discusses the perceived risk of security problems on mobile devices and even cars akin to those suffered by Personal Computer users today. This is something I've been thinking of writing about Read More
posted Sunday, February 13, 2005 10:13 AM by Steve Lamb | 2 Comments
Filed Under: , , , , , , ,

What is the Padlock for in Internet Explorer? Claims of Breaking SSL in Internet Explorer

I've seen sessions @ security events which claim to "Break SSL in Internet Explorer" & recently received an email along the same lines (listed after the next couple of paragraphs starting "Subject"). The "Padlock" is part of Internet Explorer as Read More
posted Tuesday, February 08, 2005 10:14 AM by Steve Lamb | 1 Comments
Filed Under: , , ,