Back to the Blog

Passwords: Sharks Can Smell a Breach a Mile Away

Posted by Jon Reid on Tuesday, February 5, 2013 - 14:22 Best Practices, Cool Tools, Data Security Best Practices, Cool Tools, Security

2013 is not shaping up to be a banner year for Internet security. 2012 saw data breaches like 6.5 million LinkedIn password hashes leaked, 420,000 member accounts from social network Formspring, Yahoo! Voices more than 400,000 usernames and passwords, 1.5 million passwords from the online dating site eHarmony. Twitter is the latest system to suffer an embarrassing security breach with accompanying data loss. Approximately 250,000 accounts holders have had their usernames, email addresses, session tokens and encrypted/salted versions of passwords stolen. Twitter has been as proactive as...

read more

Security Hardening Open Source Projects

Posted by Jon Reid on Wednesday, October 31, 2012 - 12:35 Best Practices, Data Security, Development Best Practices, Development, Drupal, Security

A client recently had a stream of attacks on several of their online applications. Thanks to excellent monitoring, solid architecture and nice, clean installations, the attacks were easily rebuffed. Cheers to all involved. Just the same, the attacks gave me some insights on what a typical attack vector looks like to an online intruder. There were certainly some patterns in the commands directed at each server or application. As I said, the client faired very well. However, the incident gave us an excellent opportunity to review our monitoring efforts and even more interesting, our security...

read more
Stay In Touch