Blog

  Recently HTC acknowledged a vulnerability that can expose a user’s WiFi credentials, including the WiFi SSID and security passwords to a malicious app running on some of its Android phones. The vulnerability was discovered by the security architects Chris Hessing and Bret Jordan, and i ...

First, please excuse me for letting my inner Archie Bunker vent a little. If you are anything like me, then you could care less about updating your Facebook page on an hourly basis. Sure, I have a page, but maintaining it is both a bore and a chore (pardon my weak rhyming scheme). What are even wors ...

I am honoured to have been invited back to present at the prestigious e-Crime Congress to be held in London, March this year. However it caused a flash-back to the last occasion I presented at Congress in 2009, when things seemed to be very different. It was around that time when myself, and a smal ...

Anniversaries are often a time to reflect on the past but also to look to the future. A major anniversary in the field of computer security was reached on the 15th of January this year. That date marked the 10th anniversary of Bill Gates' famous memo marking the start of Microsoft's Trustworthy Comp ...

You can't make an omelette without breaking a few eggs, or in this case grating a few nerves. However, the 'King has no Clothes' approach has never really worked for me, or for that matter, as an instrument to cloak, what would seem to be a sprinkling of lacklustre strategies for defending against t ...

Kevin Townsend asked me for my opinion on iGadget jailbreaking, in the light of the recent release of Absinthe, a jailbreaking tool for the iPhone 4s and iPad 2. As a result, I’m quoted in a useful article for Infosecurity magazine here that also includes quotes from luminaries such as David E ...

We have come to expect the Internet to be leveraged by Hacktivists to carry their political, or commercial bashing message forward to the masses. We realise that the opportunities presented by the global media channel of the Internet can be utilised to gain access to a reading public made up of bill ...

  Message to ‘Wikipedia’, ‘Google’, and ‘Craigslist’: We can all protest, but is it acceptable and professional to impact the public?  

2012 was looking quite quiet in Apple security terms up to now, but I see that the guys behind the OSX/Flashback Trojan are quietly beavering away. No sooner had  Apple updated XProtect, a system utility that provides a certain amount of protection against a selection of OS X-targeting malware, ...

It was back in 1999 I worked for General Motors (GM), when the topic of internet enabled automobiles entered my professional vocabulary. Around that era, GM were researching the future scene of the motor-car, leveraging a technology called OnStar. At that time, being one of only a few security ...