Halkyn Security Blog
Specialist Security & Risk Management Consultants

Posts tagged Vulnerabilities

Security researchers demo GPU Keylogger

Reported on the Register today, security researchers have demonstrated how malicious code can be run on graphics processors (GPUs) rather than the central processing unit (CPUs) at the heart of a computer: http://www.theregister.co.uk/2015/05/13/graphics_card_malware_gpu_keylogger/

Read More

Security Patches – Internet Explorer – Act Fast

Security Patches - IT Plasters

For lots of enterprises, security patches are a pain to test, a pain to deploy and frequently frustrating when they require downtime for the inevitable system reboots. However, security patches are also a significantly important mechanism for protecting your environment against attacks. They really are. This month, Microsoft have announced 13 security patches – three of which are […]

Read More

Cloud Security – Uncrackable Encryption?

Cloud Security – Uncrackable Encryption?

Cloud computing is frequently presented as the future of how will interact with our data. More and more systems are moving to the various service routes, from software (such as google docs and gmail) to lesser known options such as “platform as a service.” There is almost nothing that is not available as a service […]

Read More

The Sun Newspaper – Hacked?

The Sun Newspaper – Hacked?

According to a tweet by “AnonymouSabu” – apparently a hacker collective on twitter – the website of the Sun news paper has been hacked. The slightly more famous hacker collective called LulzSec have also tweeted the news and at the moment it isnt clear who is responsible. Currently, when you visit the the Sun’s website […]

Read More

WordPress Updates

WordPress Updates

Hot on the heels of WordPress 3.2, a maintenance release update has been issued. As is normally the case, unless you have a strong reason not to, it is best to update to the latest version – although, of course, if you are running a business critical application under wordpress make sure you put it […]

Read More

Essential security audit tool – Backtrack 5 bootable USB

Essential security audit tool – Backtrack 5 bootable USB

For anyone interested in carrying out penetration testing, security audits or other forms of network security self assessment, Backtrack has long been the operating system of choice. Backtrack is a Linux distribution which has been slightly modified to fine tune how it runs various tools used for penetration testing. Booting into Backtrack gives you an […]

Read More

LulzSec security antics still in the news

LulzSec security antics still in the news

Another day and another round of news headlines about the hacker collective calling itself LulzSec. Today there were two main headlines relating to the UK. The first, and possibly most serious, was a reported claim that LulzSec had gained access to the UK 2011 Census and was preparing to make all the data (i.e. huge […]

Read More

Security Breaches – Easy and commonplace?

Security Breaches – Easy and commonplace?

On Monday we discussed the problem with people assuming that more and more successful hacks and security breaches were the result of “sophisticated” or “state-sponsored” attackers. Then, on Tuesday, the now-notorious LulzSec threw a new spanner into the works and opened up, via their twitter stream, the option for people to “dial in” and suggest […]

Read More

RSA to replace SecureID tokens – confirms Lockheed Hack linked to compromise

RSA to replace SecureID tokens – confirms Lockheed Hack linked to compromise

Today, RSA has confirmed that the compromise of its SecureID system assisted the hack on Lockheed Martin. Sadly, as with most things, RSA seem very slow and reluctant to release any information. From PC Pro Magazine: RSA has confirmed that information stolen from it by hackers lead to the attack against Lockheed Martin. In March, […]

Read More

Were RSA’s SecurID Security Tokens to blame for Lockheed Martin Hack?

Were RSA’s SecurID Security Tokens to blame for Lockheed Martin Hack?

Lots of the publicity around the recent Lockheed Martin hack is pointing the finger in the direction of RSA. SC Magazine have an interesting summary of the situation but the best bit is towards the end: [Steve Watts, co-founder of SecurEnvoy] said: “The RSA Security breach occurred in mid-March, which has given its users more […]

Read More

Recent Tweets Recent Tweets