Blogspot - erratasec.blogspot.com - Errata Security
General Information:
Latest News:
Microsoft: a different shade of blue 25 Aug 2013 | 01:40 am
The punditry commenting on Ballmer's departure from Microsoft get it all wrong. Typical comments are like this one saying that Microsoft "needs to stop being a lumbering giant and reinvent itself as a...
Nasdaq is neither in New York nor on the Internet 23 Aug 2013 | 08:39 am
Today's new coverage of the Nasdaq outage included pictures from New York City and speculation it was due to a hacker DDoS attack. Neither reflect the truth. The Nasdaq market is not located on Wall ...
A gentle intro to Dubstep 22 Aug 2013 | 01:14 am
I listen to music while coding. People therefore ask me what I like listening to. That's a bad question: music grows stale the more you listen to it. The more I code, and the more music I hear, the mo...
Why Facebook can't pay the bounty -- but should anyway 21 Aug 2013 | 01:28 am
There's two sides to every story. There's more to the story of Facebook's snub of Khalil Shreateh, the security researcher who found a bug in the Facebook. Firstly, it's not necessarily Facebook's fa...
Legalizing Bitcoin may drive it further underground 19 Aug 2013 | 11:24 pm
In recently rulings, the United States and Germany have declared Bitcoin to be legal money. Bitcoin proponents have hailed this as a good thing. They are probably wrong: declaring Bitcoin to be legal ...
Why aren't we demanding Gen. Alexander's resignation? 17 Aug 2013 | 03:24 am
Every time NSA Director General Alexander speaks, Snowden releases yet another document that proves Alexander is lying. A couple weeks ago, Alexander gave BlackHast attendees the "facts" about the NS...
Swartz was indeed persecuted, not prosecuted 14 Aug 2013 | 11:47 am
In what's become a disturbing refrain of late, the crazy conspiracy theories of Internet activists have turned out to be right. The case against Aaron Swartz was more political persecution than crimin...
10 years of Blaster: a retrospective 12 Aug 2013 | 07:23 am
I wanted to write a long post celebrating the 10th anniversary of the Blaster worm, but I think I'll just split it up into shorter posts. Early in 2003, I went to the New York chapter meeting of the ...
When did we start trusting bad code? 11 Aug 2013 | 09:42 pm
As we all know: programmers can't be trusted to do cryptography right. They'll make rooky mistakes like screwing up the random number generator. But the converse is also true: cryptographers can't be...
Witty hubris 11 Aug 2013 | 11:39 am
In response to my previous two blogposts on "12 steps to safe code" and "trustworthy code", @bellytales makes a fair point: @ErrataRob @marshray Mr BlackICE asks when we started trusting bad code. Hi...
