Some of my Facebook friends are probably wondering why I would fall into the trap of the magical “dislike button” hype that seems to be sweeping across Facebook right now. In a little social experiment and hopefully an awareness exercise for some of my non-security friends I created a Facebook group based off of similar […]
Beware of Evil Facebook Groups Read More »
I see some crazy, mind blowing things posted by people on social networks but this recent tweet I saw might take the cake. It’s one thing to post something on Facebook where you have the ability to lock down who might see your status updates but Twitter has very little control over this. In fact,
Twitter: You’re Doing It Wrong! Read More »
Everyone has probably already heard that Facebook rolled out new privacy settings today. If you haven’t seen them or gotten the following pop-up box on login…you will soon: There are a great deal of articles already out about how this is such a great improvement and how these new settings give you more control over
New Facebook Privacy Settings: For Better or For Worse? Read More »
Continuing the zombie apocalypse from Defcon…Kevin Johnson and I will again be presenting “Social Zombies: Your Friends Want to Eat Your Brains” at this week’s OWASP AppSec DC conference. We will be speaking Thursday, November 12th at 2:10 in room 146c. We will have some new material and updates from the presentation we gave at
Social Zombies at OWASP AppSec DC this Week Read More »
This is the final article in my series on Enterprise Open Source Intelligence Gathering. This information relates to the main topics from my presentation that I am giving this week at the 7th Annual Ohio Information Security Summit. For more background information, see part one. If you missed part two (blogs, message boards and metadata)
This post is part two of my three part series on Enterprise Open Source Intelligence Gathering. This information relates to the presentation that I am giving this week at the 7th Annual Ohio Information Security Summit. For more background information, see part 1. Part three will be about putting together a simple monitoring program/toolkit and
UPDATE: You can now download my slide deck from SlideShare. Next week I will be speaking at the 7th Annual Ohio Information Security Summit on “Enterprise Open Source Intelligence Gathering”. Here is the talk abstract: What does the Internet say about your company? Do you know what is being posted by your employees, customers, or
Enterprise Open Source Intelligence Gathering – Part 1 Social Networks Read More »
Shocking but true…today a researcher discovered that Twitter has been used for command and control of a botnet which may have been used by Brazilian hackers to steal online banking login information. Kudos to the researcher, Jose Nazario, who found this. It was an interesting read to say the least. The bot would basically look
Old News: Twitter can be used for Botnet Command & Control Read More »
Kevin and I want to thank everyone that came out to our talk at DEFCON 17 this past weekend. We had a great time giving the talk and thanks for the feedback! Even the two Facebook developers that came to our Q&A enjoyed it! Having said that, Kevin and I will never, ever get a
Social Zombies Slides and DEFCON Updates Read More »
I wanted to get this post up before I leave for DefCon since it will be hard to have time to blog in Vegas. In a nutshell, I started a new web site called socialmediasecurity.com. This was originally a project that I started to move my social media research over to a separate web site
Launching: SocialMediaSecurity.com Read More »
