malicious code Archives

Home » malicious code

Can I use a CISSP book to study for SSCP?

Dave Farquhar security November 27, 2016August 1, 2017cissp, malicious code, SSCP

Can I use a CISSP book to study for SSCP? That’s a good question, and a good idea, but I don’t recommend it anymore.

David Farquhar is a computer security professional, entrepreneur, and author. He started his career as a part-time computer technician in 1994, worked his way up to system administrator by 1997, and has specialized in vulnerability management since 2013. He invests in real estate on the side and his hobbies include O gauge trains, baseball cards, and retro computers and video games. A University of Missouri graduate, he holds CISSP and Security+ certifications. He lives in St. Louis with his family.

dfarq.homeip.net

Reports of the Droidpocalypse have been greatly exaggerated

Dave Farquhar Android, security July 19, 2013July 18, 2013android, malicious code, malware, Play Store, vulnerability

I was listening to the excellent Risky Business analysis of the Droidpocalypse this week, and I’m happy to report that the vulnerability that affects 90% of Android devices ever made, while serious, is vastly overstated. Read more

Dave Farquhar

dfarq.homeip.net

Questions from the logs

Dave Farquhar Uncategorized January 6, 2013November 27, 2016cissp, lionel, Lionel Fastrack, lionel train, malicious code, SSCP

If one person uses a password, another will. That’s a popular hacking theory. If that’s true, then chances are if one person asks a question, another will. So here are three short questions (one completely unrelated to the others) I found in my logs over the weekend, and their answers.

Dave Farquhar

dfarq.homeip.net

Windows 8 promises better security–to a point

Dave Farquhar security August 12, 2012antivirus, malicious code, windows 8

At the summer hacker conferences, researchers have been talking up Windows 8 and its improved security. They talk a good game, but here’s the end run around it.

Dave Farquhar

dfarq.homeip.net

End of the innocence for Mac security

Dave Farquhar Macintosh, security March 30, 2012Adobe Acrobat, Adobe Reader, antivirus, apple, firefox, mac os x, macintosh, malicious code, malware, Malware Domains, microsoft word, office 2007, os x, pdf files, spyware, trojan horse, vector, vulnerability, yahoo

Antivirus vendor Kapersky has identified a new trojan horse targetting Macintoshes. It spreads a botnet based somewhere in China via an infected Microsoft Word document, typically sent as an e-mail attachment.

The spin is that if you don’t use Word on your Mac, you’re safe. That’s true–this week. But going forward, it’s going to take more than that. Read more

Dave Farquhar

dfarq.homeip.net