go to sections menu

The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: article commentary

Go to Homepage [0], contents or to navigation menu



Its time for patch tuesday once again

Patch Tuesday is here and Brian has this blog post covering the details. I know Trend Micro will probably submit something, and I’ll post something when they do. I believe its going to be over 60 patches if I remember correctly? Flash is no better, and can 2020 come soon enough?

Comments Off on Its time for patch tuesday once again

Have we done enough about foreign problems?

I have two articles I’ve read as of late. Both come from Cyberscoop. ‘We simply haven’t done enough’: Facebook and Twitter execs testify on foreign influence campaigns and NSA official: Foreign hackers have ‘pummeled’ U.S. by stealing IP are the two articles. Both have their opinions, and both read well in the fact that this is a difficult problem. Part of that is attribution, and the other is once we know who it is, there is no way to prosecute the purps, or if there is, its going to be a long process. I’m going to post these two as part of this post, and I’m curious if there is a solution to this? Lets discuss.

Comments Off on Have we done enough about foreign problems?

A group looking to evolve, whats next?

According to Cyberscoop, they are reporting that a well known group is looking to continue unebated. Analysts expect Lazarus Group to evolve, clean up opsec is the name of the article, and you can comment on this on your own time. There’s no way I can keep up with each and every article, but this group interests me, because they always come out with new things. Check out this article and let me know what you think.

Comments Off on A group looking to evolve, whats next?

Should we be tired of sorry?

eeShould be sorry with sorry? Why you should be fed up with the cycle of FUD talks about how there are issues keeping the government as safe as possible because each office has their own budget dealing with threats. They use the same software we do, but yet, they have more targeted threats that we may not necessarily have. This was a great article to read, and I’m curious on thoughts. This is because we don’t really know the issues the government face, but it is more of a problem than we do. Thoughts?

Comments Off on Should we be tired of sorry?

A Closer Look at the Locky Poser, PyLocky Ransomware

To keep this blog moving, I want to talk about this article entitled: A Closer Look at the Locky Poser, PyLocky Ransomware and this article is quite interesting. Not only is this piece of ransomware going after some files we might have seen, but this particular article has gotten my interest because there are tons of file extensions I’ve not even seen in this list and a lot in which I’ve not even heard of. This is absolutely crazy!

Some of them are of concern, especially our audio files such as mp3, m3u, m4a, and other associated movie and video files. This practically makes a computer useless to get anything done unless you pay these folks. In the disability community, I don’t remember ever having an issue that takes a computer out except for the issues we discussed way back in 2006 on our third podcast.

I don’t think they will go after the biggest executable file ever, the exe extension. The reason for this is simple, they want a working computer so they can extort you for the rest. Thats what ransomware is.

Do you have thoughts? Lets hear about them.

Comments Off on A Closer Look at the Locky Poser, PyLocky Ransomware

What is happening with all the accusations of hacking and no action?

I’ve been reading numerous articles that have accused various countries of hacking. The problem I see is a big problem. That is this. If you have proof that a country is hacking, whatever it may be, why don’t we work to get them prosecuted? I’ve also seen accusations of antivirus companies spying on the United States, when their job is to analize threats. On the next podcast which will be our 288th, I’ll talk about my thoughts as wlel as scanning some articles live looking for something I was looking for. I’m curious on what you guys think of all this hacking whether it is state sponsored or not? I think that if it was state sponsored, something else happens. Thoughts?

Comments Off on What is happening with all the accusations of hacking and no action?

A Virginia Bank Breached Twice and No Fix

On July 27, 2018: I had posted the article A Virginia Bank Breached Twice and No Fix and while I found one slight mistake in a linking issue, it should be corrected as requested. I’m curious on your thoughts on this article and even the last one. What do you think? Lets discuss.

Comments Off on A Virginia Bank Breached Twice and No Fix

Hackers breach the same bank twice?

So I read a very interesting article this week. It is entitled: Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M and I find it very interesting.

Without going to the articles content, I can say that my honest opinion is that it is not the cyberpolicy company they chose. I believe its the bank. You can click through to the article, and read it. I’ll have a link to this article later on Friday or even Saturday when it becomes available. I’m sure it’ll be tomorrow, but when I’ll put it up, depends on time and whats happening.

Now, I believe I’ve seen it all.

Comments Off on Hackers breach the same bank twice?

Bug in lifelock exposes millions

I have not read this yet, but saw this on my RSS feed. An article by Krebs lifelock bug exposed millions posted today, July 25th, is another in a series of ongoing issues with security. I do hope it was a bug, and that no information was actually taken. I’ll talk about this on my next podcast, as well as other items that I think we need to talk about. The show notes for the podcast will be posted tomorrow, but this needs to be posted now.

Comments Off on Bug in lifelock exposes millions

Book Review: ‘Kingpin: How One Hacker Took Over the Billion-Dollar Cybercrime Underground’ by Kevin Poulsen

Hi all,

I have had the article entitled Book Review: ‘Kingpin: How One Hacker Took Over the Billion-Dollar Cybercrime Underground’ by Kevin Poulsen published on vocal this afternoon. Podcast 280 has an audio version, but I thought I should continue my writing on vocal. I already had a comment sent to me by Vocal indicating that it was good, so I hope you guys find it of good quality too.

For my list of articles, including this one, please to to my articles page where everything I’ve written is published.

Do leave those thoughts!

Comments Off on Book Review: ‘Kingpin: How One Hacker Took Over the Billion-Dollar Cybercrime Underground’ by Kevin Poulsen

Microsoft is Killing Skype Classic on September 1 – Thurrott.com

Well, I was upgraded over the weekend and I was not impressed, although I was tipped off that it is better usable than classic, and yes I can confirm this. Its just getting a makeover and I’m glad it is more accessible than it once was.

Over the weekend, I noticed that the desktop version of Skype was being offered an upgrade that replaced that app with the modern version.

Source: Microsoft is Killing Skype Classic on September 1 – Thurrott.com

Comments Off on Microsoft is Killing Skype Classic on September 1 – Thurrott.com

Apple releases minor updates, one may be a big change

IOS and apple products getting minor updates

Apple vis is reporting that IOS 11.4.1 and other apple products are getting minor updates. this apple vis blog post walks you through the details of the updates. According to notations, it does not look like there are any improvements or regressions for accessibility, but it is always a possibility. Instructions for updating each apple product is given at the end of the posting for people who need it.

The biggest change that I want to highlight is the new USB locking feature. This is to lock out tools from extracting data after an hour of the phone being locked. This is a very talked about new feature of the IOS platform, and is looking to be a good thing. According toarticles, companies who develope these tools may already be getting around this restriction, but it is not confirmed as of yet.

For the casual user, this update set may include bug fixes and security improvements throughout the operation of the device being used whether phone, watch, TV, or Mac.

Thanks for reading.

Comments Off on Apple releases minor updates, one may be a big change

IOS 11.4 is now out

Hi all,

This apple vis article talks about IOS 11.4. Some interesting new features we have. I’ll see about getting my phone updated. Please feel free to talk about this one and let me know what you think.

Comments Off on IOS 11.4 is now out

Meltdown and spector are not done, what’s next?

In news I read today, Meltdown and Spector are not done yet. From Cyberscoop, we have an article I’m passing along Tech giants reveal new variant of Meltdown and Spectre vulns and I’m curious on what Security Now has to say about it. This can’t be good in the long term. You’d think the patches were a start to this, but people aren’t done trying to pick these vulns out. The A.J. Sunday Retreat talks about the Meltdown and spector as we knew it, but now, there is more than we know. This aught to get very interesting.

Comments Off on Meltdown and spector are not done, what’s next?

Did you know that Android is vulnerable? Research shows its not getting updated

In a recent article we learn that android is not all that secure because they aren’t getting updated. On the flip side, IOS and PC’s are just as bad, although PC’s don’t have to worry about it that much if you use it responsibly. No one is updating their Android devices, new data shows is the article, and you’re ready to click through to read it at your convenience. Let me know your thoughts.

Comments Off on Did you know that Android is vulnerable? Research shows its not getting updated

Confucius is now back, did you think it was dead?

In an article entitled Confucius Update: New Tools and Techniques, Further Connections with Patchwork – TrendLabs Security Intelligence Blog and this is quite interesting. This is the beginning I think of a bigger problem we’ll have to fight.

Comments Off on Confucius is now back, did you think it was dead?

Running a government site? You should be ashamed of yourself for this: especially if you’re the pentagon

So I recently read an article on Cyberscoop that talks about the government, more specifically, the pentagon. You’d think that security is important when it comes with the government, however, they have proven not to care that much. Pentagon’s websites need better security, Wyden says is the name of the article, and this can’t be a good sign. Self signed certs is not the way to go now a days. You need an authority to sign certs. Check the article out, let me know your thoughts.

Comments Off on Running a government site? You should be ashamed of yourself for this: especially if you’re the pentagon

If you live in California, you’ll want to read this

Hi all,

While perusing the tech news of the feeds I subscribe to, Cyberscoop was the one that wrote up a story dealing with a California Breach. The article Hackers steal PII and payment info of thousands of California residents in company breach was posted May 21, 2018 and its something we Californians need to be aware of. This can’t be good. I have a very bad hunch that this is only going to get worse, and sadly, there is nothing we can do as a whole to stop it except to not do business online. Sometimes, thats the best thing, because we want services only available online. I’m not saying that we should completely stop, but with all the breaches coming, how can we learn how to protect ourselves? This is not going to be good, but I hope that we can find a solution. Thoughts?

Comments Off on If you live in California, you’ll want to read this

IOS and Mac updtates now ou

Hi all,

This blog post from Apple Vis indicates that there are IOS and Mac updates. Mainly security patches, but nothing huge if you’re running a 7 or below. The fixes for IOS is dealing with iphone 8 specifics.

Comments Off on IOS and Mac updtates now ou

Here’s some of what I’ve been reading of late

hi all,

Here’s what I’ve been reading of late that people might find of interest.

  • Financial Cyber Threat Sharing Group Phished (Krebs on Security) This article was of interest because the financial industry has control of our money and allows us to either spend what we have, or go broke, depending on our own financial situation. They don’t have a say so on how we spend our money, but money is printed and the whole bit so we have it available. The fact that anyone in any sector can be phished shows how vulnerable the human mind is. It just takes one mistake to have an issue.
  • Nuance Communications says NotPetya attack has cost it $92 million since June (Cyberscoop) I selected this one for the blog because we all know who Nuance Communications is. They are the ones who gave us some voices for our access technology and other products. The fact they’re in other businessesdoesn’t surprise me. The fact they got hit with ransomware or malware doesn’t necessarily surprise me either, because we just don’t know who will get hit with these things today. What gets me is the amount of money lost by such an attack. 92 million dollars to lose is a big amount for a company and the original story before I read it had a figure of almost 100 million. My only questions is how they come up with these numbers. I’m not saying they’re wrong, but I’m asking how they can figure out that it is 92 million, 98 million, or even 100 million if thats what they could’ve lost. If they spent that much, I could see that in records, but I believe the number was 92 million lost in potential sales, and that, I’m wondering about.
  • Android still has issues, and this Cyberscoop article might be of interest to you. New Android malware steals user data, records audio and incurs phone charges is the article, and is something to be aware of.
  • In the what the hell department, I saw this article from Cyberscoop entitled Big banks want to weaken the internet’s underlying security protocol and I was like what the hell? What are they thinking? Read this and submit your comments.
  • Trust certificates is the way SSL works. In a very shocking article, Cyber Scoop is reporting that 23,000 certs were recently revoked in an article Trustico revokes 23,000 SSL certificates due to compromise and I just had to shake my head.

There’s plenty more on my twitter feed that might catch your attention. Let me know your thoughts.

Comments (1)

« Newer PostsOlder Posts »

go to sections menu


navigation menu

go to sections menu