Author Archives: jimg

Current Events: No need for jello, fingerprint USB sticks are easy to crack.

Posted on March 16, 2008 by jimg

No need to go to great lengths to try to spoof finger print scanners on USB sticks. You can just tell the device that the data is public. Researches discovered this vulnerability in models from 9pay and A-Data fingerprint USB … Continue reading

Posted in Current Events, Privacy | Comments Off on Current Events: No need for jello, fingerprint USB sticks are easy to crack.

Security Review: Apple iPhone 3rd party application support

Posted on March 9, 2008 by jimg

On Thursday, Apple happily unveiled its plan for third party support of native iPhone applications. The plan involves an application development and distribution pipeline including an iPhone SDK, a suite of IDE tools, and a sales and distribution plan through … Continue reading

Posted in Announcements, Current Events, Ethics, Security Reviews | 2 Comments

Security Review: Mac OS X Dashboard Widgets

Posted on February 10, 2008 by jimg

The Mac OS X Dashboard is a platform for developing small applications, or Widgets, that can be accessed and hidden quickly at any time within the OS. Common widgets tasks include simple calendars, calculators, games, weather tracking, and system monitoring. … Continue reading

Posted in Integrity, Privacy, Security Reviews | 1 Comment

Google Privacy Policy: 2007 in Review

Posted on February 6, 2008 by jimg

Google has posted a video recap of 2007’s privacy policies. In the heart of “don’t be evil”, Google Global Privacy Counsel member Peter Fleischer covers Google’s position on some of the toughest privacy topics of our time.

Posted in Miscellaneous | 1 Comment

Perfect Security: Delusional and Misdirected

Posted on January 28, 2008 by jimg

I hesitate to post commentary about this article, but feel that is important to deconstruct claims by those believing they have all the answers. Especially when they are posting in high-profile blog sites. InfoWorld’s Security adviser Roger A. Grimes has … Continue reading

Posted in Current Events | 1 Comment

Define “Safe”…

Posted on January 18, 2008 by jimg

An article in InformationWeek yesterday exposes the details of what McAfee’s ScanAlert product actually means by “Hacker Safe”. The ScanAlert product issues certifications that websites are safe from attack. However XSSed.com, a website dedicated to exposing Cross-Site Scripting attacks, gave … Continue reading

Posted in Current Events, Ethics | 3 Comments

GOA says “The IRS security still sucks”

Posted on January 17, 2008 by jimg

According to a report Tuesday from the Government Accountability Office, sensitive taxpayer data housed at the IRS is critically vulnerable to security threats. The report is a follow up from March 2006 where the security problems were initially discovered. The … Continue reading

Posted in Current Events, Policy, Privacy | Comments Off on GOA says “The IRS security still sucks”