Sunday, March 29, 2015

Top 5 infosec links of the week (LXVIII)

Fool me once, shame on you; fool me twice, shame on me. We have almost assumed that we will be victims of any incident anytime, but at least it lasts the pundonor of not so indecorous scam, attack or hack. There are times that exposing a security breach is not only a risk exposure, but it seems to fool as. That is how the hottest news of the week they have come. 

It is the case on Australian electoral authorities, who paled when at the beginning of the week we learned that their online voting systems are vulnerable to attack vectors, including the newly discovered FREAK. A vulnerability that makes you look like the class nerd, if only one ballot becomes manipulated

We also get flabbergasted when we read things like 100% of UK business have been affected by any kind of digital certificate attacks. That figure challenges a whole country, and we do not need to be very clever to sense that it can actually happen almost anywhere in the world. The post on specialized Infosecurity magazine presented it with a hint of irony: 100%, "take a moment to read that again... if you like".

Terabytes and terabytes at breakneck speeds. DDoS growth seems endless, and indeed the development of network capacity itself is partly responsible for this steady increase. For now, this week Net Security has reported that the average of such attacks tripled in the last quarter of 2014. Where is the limit? Is there a limit? Who sets the limits?

When a scan with the right tools allows you to "enter into the kitchen" of the gas stations, thus to alter its supply data, or when it is possible to cast a virus on your Android by hijacking the installing system of packages, the final thought is inevitable: sooner or later something will happen to me, fool me once, don't fool me twice.


Post a Comment