720-891-1663

Default Passwords on Gov Websites – What Could Go Wrong?

You would think that in 2020 we wouldn’t have to tell people not to use default passwords. You would certainly think that we wouldn’t have to tell government IT folks not to do that. But if you thought that, apparently, you would have thought wrong. We are still telling end users to change the password […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Is Your Mobile Phone App Secure? Probably Not!

More than three-fourths of mobile banking vulnerabilities can be exploited without physical access to the phone. A new report from Positive Technologies has a number of sobering facts: 100 percent of mobile banking apps contain code vulnerabilities due to a lack of code obfuscation. NONE of the mobile banking apps tested had an acceptable level […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Security News for the Week Ending June 19, 2020

Akamai Sees Largest DDoS Attack Ever Cloudflare says that one of its customers was hit with a 1.44 terabit per second denial of service attack. A second attack topped 500 megabits per second. The used a variety of amplification techniques that required some custom coding on Akamai’s part to control, but the client was able […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Bug in Git Software Could Make Software Repositories Vulnerable

Git, the software used by millions of software developers to manage their source code – the crown jewels of most corporations – is vulnerable to two different attacks. The first bug would allow a malicious attacker to overwrite code in folders where they should not be. The second bug allows an attacker to read arbitrary […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Application Security – The Neglected Threat

When companies like Microsoft or Oracle develop software, they have massive teams who’s only job is to try and find bugs in the software.  They also have made significant investments automated tools to help with software quality assurance.  Still Microsoft usually patches 10-20 new bugs month after month.  Oracle often patches 100 bugs a quarter. […]

Continue reading → [DISPLAY_ACURAX_ICONS]

Symantec Anti Virus Security Problems Exposed

Anti Virus software has long been a concern of the security community.  While it endeavors to protect the user’s workstation, in order to do it’s job, it requires a lot of system level permissions.  This week, at least with Symantec, that came home to roost. Tavis Ormandy a researcher from Google announced that he’d found […]

Continue reading → [DISPLAY_ACURAX_ICONS]