Saturday, November 30, 2013

The price of the currency

The cash is for ruined. The opulence is no longer measured by the money you have to pay, but by the ability of moratorium with cards you have.


The words with which we began this Saturday come from Juan Cueto, director of Canal Plus, and have become obsolete in a few years. The reason for this decline as early live day after day in the news, with the rise of online payment methods, and in particular the rehabilitation of digital currency par excellence, the bitcoin.

Friday, November 29, 2013

Risky Business

“Cyber risk is also to stay apart from globalization if we don’t understand cybersecurity”, says the CISO of global leading BBVA’s Group, Mr. Santiago Moral Rubio, at one of the roundtables held yesterday in #ciberseguridadenempresas event (cybersecurity at enterprises). was there tweeting about it all along the morning.

131107 1410 Andromeda Lightning talks Recording on 2013-11-07 1405-Vimeo from Øredev Conference on Vimeo.

Globalization is already a non-discussible fact. Everything happens everywhere, every time, and we don’t need to be where things are going: finding information is all we really need. What can’t be shared via Internet, it doesn’t exist. What is going through networks, it survives. For example, the tons of videos that allows us to know closely the Øredev developers seminar, held in Sweden early this month, from where we extract the lecture shown below these lines.

Thursday, November 28, 2013

Keeping an eye on the future

“The only thing we know about the future is that it will be different” (Peter Drucker, Austrian lawyer and author). Mr. Drucker’s statement is not a very compromising one. However you should commit in terms of security so it is necessary to analyze the present to prevent threats from the future.

Nowadays, one of the actual dangers are trojans, which have become a real headache for banks. The last one which has been discovered storms the stage. It is called NeverQuest and is designed to grab all the data entered in 28 different sites. It could even snatch the dubious distinction of being the most widespread banking trojan to Zeus and Carberp.

Wednesday, November 27, 2013

Your work away for lack of prevention

Your work away for lack of prevention|Tu trabajo a la basura por no estar prevenido

“A destruction, an annihilation that only man can provoke, only man can prevent” (Hungarian writer, Elie Wiesel). Therefore, the power to prevent third parties from reducing your company to a pile of rubble is held by the management.

We should be on alert of a long list of threats on the Internet. For example, the distributed denial-of-service (DDoS) attacks that can shut down an organization’s networks. Having a plan of action in such cases may be essential, although 45% of corporations, surveyed by security networks company Corero, claim not to have a roadmap to follow in such cases.

Tuesday, November 26, 2013

The smell of cyber threats

The smell of cyber threats|El olor de las ciberamenazas

Margaret Thatcher once said, “I seem to smell the stench of appeasement in the air”. We live and do business in a world of constant change. In the computing and security environment, change turns to be a whirlwind that destroys anything which does not adapt to these changing times.

What would the Iron Lady say if she knew that 8 out of 10 companies are satisfied with their current security systems? Only 13% of them have made drastic changes in their security approach ove the last 2 years.

Monday, November 25, 2013

We are a bunch of exhibitionists but we don't know it

“Thanks for invading our privacy. I’ll call the police if you do that again”. This was the reaction of one of the individuals who was bothered by the social media experiment made by the American comedian Jack Vale (watch the video).

But Mr. Vale just approached to some strangers with information that they had already fully shared in public on social media. It is very interesting to see the reaction of surprise from those who did not understand how this stranger knew so much about them. They were not aware that when they publish a photo of their dog on Instagram or write a tweet their mother's birthday, they are giving up their privacy.

Sunday, November 24, 2013

Top 5 infosec links of the Week (III)

Crowdfunding serving professional killers, Google and Microsoft’s measures against child abuse, the Cyberpol creation, arrest of 5 suspected cyber-criminals and hacking through public wifis, were the topics that most caught your eyes this week.

'Assassination Market' is a website that promotes the murder of specific people, mainly politicians suggested by its users. They crowdfund each target’s assassination in bitcoins. Thus, its creator’s aim is to destroy “all governments, everywhere."

Saturday, November 23, 2013

Cyber-criminals' modus operandi

“What worries me is the professionalism of everything” (Scottish writer, Irvine Welsh). Especially the professionalization of cybercrime has become a problem that is increasing.

In the breathtaking video that accompanies this post, we are privileged to witness some of the techniques used by thieves in this century: from stealing credit cards or credentials to using call centers or hiring mules to make it difficult to track the money. In this way, the protagonist kneaded € 100,000 to buy a sports car.

To protect their users from some of these dangers, Twitter has strengthened all it’s traffic with the Elliptic Curve Diffie-Hellman (ECDHE) cipher suites that generate a randomized key per session that is shared between the browser o app and Twitter’s servers. But these ones don’t exchange the key in full.


We invite you to rate our posts, to leave your comments and to share them on social networks. Also, if you want you can follow us on our profiles. At the sidebar, you’ve got the links ;-)

Friday, November 22, 2013

Light vs. Infoxication

British writer Andrew Lang said that "an unsophisticated forecaster uses statistics as a drunken man uses lampposts for support and not to light”. The tide data about the information security of is so huge that if we are not able to analyze it properly, we can end up like "drunks" on information. Just on piece of that, from the video below these lines: cybercrime generates more than 1.5 million victims... every day!

In order to enlighten rather than drunk, the Electronic Frontier Foundation (EFF) has just published the results of an investigation aimed at Internet giants on the adoption of five basic steps to ensure the encryption of files shared by its users. Among the results they are included some striking features: full compliance from companies like Dropbox or Google vs. the almost total failure of others like Microsoft, which does not encrypt the data center links, and doesn’t supports nor strict HTTPS (HSTS) neither STARTTLS. You’ve got all the information compilled in a very clear infographic.

Thursday, November 21, 2013

If you took a cab in the Internet

If you took a cab in the Internet

“Please, stop the cab. I leave here”. Can you imagine a taxi driver who says “no”? “Look, I better bring you to the other side of the city and then we will go to your destination”.

Well, something similar has happened throughout this year with blocks of data sent over the Internet. Instead of following the shortest route to their destination, the Border Gateway Protocol (BGP) routes were modified to divert them to Belarus or Iceland before reaching their destination, presumably intended to modify or monitor them.

Wednesday, November 20, 2013

The dark side of crowdfinding

“Is anarchism possible? The failure of attempts to attain freedom does not mean the cause is lost”, affirmed the German anarchist Johann Most. Today we witness the latest try to finish with governments and politicians carried by a supposed anarchist.

'Assassination Market' is a website accessible through Tor network that encourages crowdfunding in bitcoins  to promote murder of the politicians suggested by its users. Thus, its creator is intended to destroy “all governments, everywhere".

Tuesday, November 19, 2013

Stones on the path

Protection against child abuse

This is how our faces look every day when we take a look at the latest news about Internet security. Sometimes the surprises that we find are not very pleasant. However, there are others that draw us a smile.

That is the case of the announcement made by Google and Microsoft regarding child abuse. They plan to put all the stones in the path of potential pedophiles seeking this kind of material on the Internet. They will not present results for about 100,000 terms in 158 languages ​​on their search engines. For now, it has only been launched in the UK.

Monday, November 18, 2013

The Police of this century

Interpol GCI Headquarters in Singapore

The police need to come down to street level”, said the British fashion designer Alexander McQueen. But  due to the expansion of the Internet the police is needed to patrol the cloud and the cyber networks as well.

For this purpose, European and Asian Interpol’s divisions have met in Singapore in order to determine how they will fight against cybercrime from their new headquarters which will be placed in that country.

Sunday, November 17, 2013

Top 5 infosec links of the Week (II)

Personal information exposed, phishing in mobile devices, companies forcing password resets for security flaws and secure web development tutorials. These are the topics that have applauded this week, and that we offer at the Sunday Post as a weekly compilation of the top 5. Are you ready?

Saturday, November 16, 2013

Cybercrime and Cyberdefense

"Trust in the goodness of others is no small testimony of his own goodness".

Saturday started with a quote from Michel De Montaigne, that it serves like a corollary to the topics to be discussed below. Cases such as a new scam campaign that is plaguing our inboxes, with emails like "suspicious contract (WARNING)". A campaign that warns us to be on the verge of losing the opportunity of a lifetime. The Nigerian scam by downloading an application that comes with “present”.

Friday, November 15, 2013

Go weekend! Go reading!

“You push it, stretch it, it'll never be enough. You kick at it, beat it, it will never cover any of us. From the moment we enter crying to the moment we leave dying, it'll just cover your face as you wail and cry and scream.” It's a mythical scene from 'The Dead Poets Society', the quintessential film to develop the love of reading. So if you are one of those who can enjoy a long, relaxing weekend, we do not want you to get in, without getting a few readings that may be very useful to you.