Stratfor: Disband the CIA and NSA, it’s all the intelligence gathering you’ll ever need!

A friend pointed this out to me on another website. We have this brilliant tagline: Best-selling author George Friedman founded Stratfor in 1996 to bring customers an incisive new approach to examining world affairs. Under his direction, Stratfor taps into a worldwide network of contacts and mines vast amounts of open-source information. Analysts then interpret the…

New Presentation: SQL Injection

I will be presenting for the PASS Security virtual chapter on Thursday, April 17, 2014 at 1 PM Eastern.  Attendees can go to the link to register for the webinar.  The talk is entitled "Understanding and Eliminating SQL Injection" and here is the abstract: Over the past several years, hacktivists, criminals, and people just "out for lulz" have…

Heartbleed

So...it turns out that OpenSSL has been broken for a couple of years.  Most UNIX-based servers are going to be affected.  If you use OpenSSL on a server, get this fixed now.  Many of the big companies are doing so now.  If you don't, you're probably going to get several "Hey, you should change your…

Going To Derbycon

I will be going to Derbycon for my third straight year.  This year, I'm taking Carlos Perez's training course on using Powershell for defense and post-exploitation.  The last couple of years, I branched out into parts of security in which I had no experience; this is coming a lot closer to my wheelhouse. I also…

This Year’s Conference Schedule

I'm looking at a pretty busy conference schedule this year.  Here's what I'm looking forward to: February 8 -- Powershell Saturday 007, Charlotte, North Carolina. March 22 -- SQL Saturday #277, Richmond, Virginia. May 16 -- May 18 -- CarolinaCon-10, Raleigh, North Carolina. June 14 -- SQL Saturday #299, Columbus, Ohio. September 6 (?) --…