Category Archives: Security

Ssshhhh. Security by obscurity is not practiced here. So don't disturb us, we're being vigilant.

Krack’d WPA2…and now, ROCA

KRACK Wifi bug logoWPA2 is the most common protocol used for protecting WiFi signals from being used by nefarious people for horrible things. As of 16 October, WPA – and all  its variants of WPA1, WPA2, personal and enterprise, including with TKIP, AES and GCMP – is officially broken. Until repairs are made to all equipment involved in a WiFi network – that means, equipment providing the signal and equipment using the signal – it is no longer a valuable security tool. The force is called KRACK = Key Reinstallation Attacks

[……]

Read more

Krack’d WPA2…and now, ROCA

KRACK Wifi bug logoWPA2 is the most common protocol used for protecting WiFi signals from being used by nefarious people for horrible things. As of 16 October, WPA – and all  its variants of WPA1, WPA2, personal and enterprise, including with TKIP, AES and GCMP – is officially broken. Until repairs are made to all equipment involved in a WiFi network – that means, equipment providing the signal and equipment using the signal – it is no longer a valuable security tool. The force is called KRACK = Key Reinstallation Attacks

[……]

Read more

Patch Your Apache Now; Don’t REST

Doing what open source does best, a patch has been released for an Apache vulnerability for those using a very popular REST interface iteration. Quickly, efficiently, patched…except, you have to update/upgrade and restart the service.

So, get to it. Don’t believe me, read this article: Patch Released for Critical Apache Struts Bug | Threatpost | The first stop for security news

[……]

Read more

Patch Your Apache Now; Don’t REST

Doing what open source does best, a patch has been released for an Apache vulnerability for those using a very popular REST interface iteration. Quickly, efficiently, patched…except, you have to update/upgrade and restart the service.

So, get to it. Don’t believe me, read this article: Patch Released for Critical Apache Struts Bug | Threatpost | The first stop for security news

[……]

Read more