My employer (SecureState) has released two white papers as part of our Social Media Security Awareness Month. You can also download some cool wallpaper for this month created by Rob our graphic designer (see the picture on the right). 🙂 First is some research several of my colleagues and I worked on. The paper is titled: …
Two New Social Media Security White Papers Released Read More »
A few weeks ago the fine folks over at Paterva released the next version of their information gathering tool, Maltego 3. Ever since day one of the product I’ve been a huge fan and have used it in multiple penetration tests and various reconnaissance activities. I know I’m not alone as many of you in …
I’ve had several fake emails that initially look like they come from Twitter in my email recently. I didn’t think anything of it until several of my friends forwarded me the same type of emails. This suggests two things. One, that these emails are starting to hit a larger audience. Or two, they are targeting …
Interesting New Twitter Phish Can Lead to Bad Places Read More »
Some of you have asked for the slides and video from the talk I did at Shmoocon with Kevin Johnson and Robin Wood titled “Social Zombies II: Your Friends Need More Brains”. I had posted these on the Twitter but I wanted to get these links up in one static location, the blog! You can …
Social Zombies II Slides, Video and Demos from Shmoocon Read More »
I see some crazy, mind blowing things posted by people on social networks but this recent tweet I saw might take the cake. It’s one thing to post something on Facebook where you have the ability to lock down who might see your status updates but Twitter has very little control over this. In fact, …
Continuing the zombie apocalypse from Defcon…Kevin Johnson and I will again be presenting “Social Zombies: Your Friends Want to Eat Your Brains” at this week’s OWASP AppSec DC conference. We will be speaking Thursday, November 12th at 2:10 in room 146c. We will have some new material and updates from the presentation we gave at …
This is the final article in my series on Enterprise Open Source Intelligence Gathering. This information relates to the main topics from my presentation that I am giving this week at the 7th Annual Ohio Information Security Summit. For more background information, see part one. If you missed part two (blogs, message boards and metadata) …
This post is part two of my three part series on Enterprise Open Source Intelligence Gathering. This information relates to the presentation that I am giving this week at the 7th Annual Ohio Information Security Summit. For more background information, see part 1. Part three will be about putting together a simple monitoring program/toolkit and …
UPDATE: You can now download my slide deck from SlideShare. Next week I will be speaking at the 7th Annual Ohio Information Security Summit on “Enterprise Open Source Intelligence Gathering”. Here is the talk abstract: What does the Internet say about your company? Do you know what is being posted by your employees, customers, or …
Enterprise Open Source Intelligence Gathering – Part 1 Social Networks Read More »
The video from the talk Kevin Johnson and I did at DEFCON 17 called “Social Zombies: Your Friends Want To Eat Your Brains” is now up on Vimeo. If you missed us at DEFCON Kevin and I will be presenting an updated version at OWASP AppSec DC in November.
