Robert Hensing's Blog
Software Security . . . and stuff.
Apple offering free attack surface increase to Windows users.
This is hugely irresponsible of Apple IMHO: https://blogs.zdnet.com/Bott/?p=405&tag=nl.e622 As...
Author: rhensing Date: 03/25/2008
The web is broken . . .
A friend of mine made a comment to me the other day that said exactly that - and now we have the...
Author: rhensing Date: 03/20/2008
Mass SQL injection coming to an IIS + ASP server near you . . .
My friend Neil has a pretty good post on the mass SQL injection stuff that was reported in the press...
Author: rhensing Date: 03/14/2008
I'm closing out CanSecWest 2008?
Well not quite - but I am the second to last speaker on the last day (Friday) -...
Author: rhensing Date: 03/12/2008
Walmart drops Linux PCs from stores
"This really wasn't what our customers were looking for," said Wal-Mart Stores Inc. spokeswoman...
Author: rhensing Date: 03/11/2008
From China with love . . .
So last week was a VERY interesting week. First off we had some dude going public with information...
Author: rhensing Date: 03/10/2008
Jonathan Morrison's kernel blog & LOST
So my friend Jonathan who is one of my hard-core kernel go to guys has decided to dip his toe into...
Author: rhensing Date: 03/05/2008
Hypervisor based rootkit detection?
Time marches on . . . https://northsecuritylabs.com/
Author: rhensing Date: 02/25/2008
The fragility of the Internets - as demonstrated by Pakistan / Youtube
I love how fragile the Internet really is. This is demonstrated from time to time and when it is -...
Author: rhensing Date: 02/25/2008
Practical application of the concept behind photon sails / laser elevators
Hilarious: https://blag.xkcd.com/2008/02/15/the-laser-elevator/
Author: rhensing Date: 02/25/2008
Cold boot attacks on encryption keys
UPDATE 2/27/2008: Douglas MacIver wrote an excellent and very authoritative blog post here on this...
Author: rhensing Date: 02/25/2008
SWI Defense in the news
My boss is apparently allowed to speak to the press. :)...
Author: rhensing Date: 02/21/2008
Asus / Apple / Wii pwnage & The press starts to wonder if maybe it's time to consider 3rd party apps dangerous?
Asus Eee PC owned out of the box (hint runs Linux): https://www.risesecurity.org/blog/entry/6/ Yet...
Author: rhensing Date: 02/14/2008
SecureWorks / Team Cymru solve the mystery of the Mega-D Trojan
Joe Stewart is the man . . . I have a ton of respect for him and everyone at Team Cymru. They teamed...
Author: rhensing Date: 02/13/2008
New measure of code quality
https://www.veracode.com/blog/?p=77Hilarious . . . I can finally explain what my team does to my less...
Author: rhensing Date: 02/05/2008
The Stig
I would not be surprised at all if it were Hamilton - but alas - given his hectic travel schedule...
Author: rhensing Date: 02/05/2008
Massive Linux / Apache hacks spewing forth browser based malware
And NO one knows how it's being done? https://www.linux.com/feature/125548 Pure insanity . . . how...
Author: rhensing Date: 01/24/2008
GMER discovers a new MBR based rootkit in the wild . . .
EDITED: 1/10/2008 to remove information about possibly using ntbtlog.txt to detect the rootkit. The...
Author: rhensing Date: 01/10/2008
Bill's last day . . .
This video is just all sorts of awesome:...
Author: rhensing Date: 01/07/2008
OSX vs. Vista security
XP + Vista vulns vs. OSX vulns for 2007. https://blogs.zdnet.com/security/?p=758 We had a good year -...
Author: rhensing Date: 12/18/2007
Notable changes in Vista SP1
Author: rhensing Date: 12/12/2007
Pwning Second Life users via QuickTime
Walk by a malicious object in Second Life - get 0wn3d: https://www.securityevaluators.com/sl/...
Author: rhensing Date: 12/10/2007
Fly with the Blue Angels?
Get pwn3d: https://alt.coxnewsweb.com/ajc/swf/blueangels/blueangels.swf Make sure you watch all the...
Author: rhensing Date: 12/07/2007
CNet 3 part series on Securing Microsoft (complete list of articles)
Here are the URL's for the 3 part series on 'Securing Microsoft' which is a pretty good behind the...
Author: rhensing Date: 12/07/2007
Patches . . .
Story time. So a couple years ago, because I have horses, someone sent me a video of a couple good...
Author: rhensing Date: 12/07/2007
How your CxO will get owned next year . . .
In a recent blog I explained how your Mom was going to get owned next year - now it's time to dish...
Author: rhensing Date: 12/03/2007
The Firefox security myth . . . busted.
Much like the Apple security myth and the Oracle security myth - the numbers just aren't there to...
Author: rhensing Date: 12/03/2007
CNet 3-part series on securing Microsoft.
Ina Fried is doing a write-up on my organization and so far part 1 was pretty...
Author: rhensing Date: 12/03/2007
How your mom will get owned next year . . .
https://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9049269&in...
Author: rhensing Date: 11/28/2007
Geekonomics?
Looks like an interestingb read: https://www.geekonomicsbook.com/ If you check out his blog it looks...
Author: rhensing Date: 11/27/2007
Is your Mac laughing at you?
Very interesting blog post on OSX's coming of age:...
Author: rhensing Date: 11/16/2007
Cisco Telepresence Magic
This is all kinds of awesome: https://www.youtube.com/watch?v=rcfNC_x0VvE
Author: rhensing Date: 11/16/2007
The second coming of Zune . . .
Zuneinites...
Author: rhensing Date: 11/12/2007
Overclocking the new 45nm Intel chips to 4Ghz?
Fascinating article . . . I used to build overclocked systems all the time but haven't really felt...
Author: rhensing Date: 11/12/2007
Hushmail - not so quiet after all!
In a previous life I did consulting for various law enfrocement agencies teaching them about how the...
Author: rhensing Date: 11/09/2007
Click-through cloaking (coming to a hacked site near you).
So yesterday I became aware of a web site that had been compromised and that was employing a concept...
Author: rhensing Date: 11/08/2007
Apple patches 7 more QuickTime vulns . . .
Unbelievable . . . or sadly - all too believable . . . Apple patches 7 more QT vulns:...
Author: rhensing Date: 11/06/2007
Happy Birthday Vista!!!
It was one year ago today (November 8th, 2006) that my favorite operating system officially released...
Author: rhensing Date: 11/06/2007
US-CERT weekly vulnerability summary, Vista, the meaning of life . . .
This URL came across one of my RSS feeds today so I had a quick look:...
Author: rhensing Date: 11/05/2007
Taiwan vs. China (he said / she said?)
Taiwan talks about the (no longer secret) Chinese hackers conducting espionage seemingly all over...
Author: rhensing Date: 11/04/2007
I make it me?
Zune acid trip:...
Author: rhensing Date: 11/02/2007