Salted Passwords – Only First Step for LinkedIn & Others

June 12, 2012
By
Salted Passwords – Only First Step for LinkedIn & Others

On the Twitters security journalist @briankrebs called last week “breach week” with the recent password/hash dumps of LinkedIn, eHarmony, and Last.FM. Of course the big advice from a consumer perspective was to change you passwords immediately. And those of us that had a little bit of tech curiosity could check if our password had...
Read more »

DHS Plans to Develop Cyber Workforce

June 12, 2012
By
DHS Plans to Develop Cyber Workforce

DHS is looking to to develop more infosec professionals in the coming years with a new initiative chaired by some familiar names. Their efforts will focus on beefed up involvement in “cyber” competitions and university programs as well as augmenting partnerships with others in the public and private sectors. As mentioned in one of...
Read more »

All Your MySQL DataBase Are Belong To Us

June 11, 2012
By
All Your MySQL DataBase Are Belong To Us

There’s a new vulnerability and exploit circulating around the Internet this morning. Discovered by MariaDB over the weekend, this time it’s a simply MySQL flaw that allows almost anyone to gain remote access to your MySQL databases. As noted from a Net-Security.org post on this vulnerability (see below), you only have to try authenticating...
Read more »

Where You Want to Be This Week for 06-11-2012

June 11, 2012
By
Where You Want to Be This Week for 06-11-2012

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, let us...
Read more »

Did LinkedIn’s Lack of a CISO Lead to Breach?

June 10, 2012
By
Did LinkedIn’s Lack of a CISO Lead to Breach?

Shocking … how can you be an online digital technology company and NOT have a CSO or CISO? We can see if you were an offline company and had delegated security responsibility to to some other C-level person or a VP or two. If your network gets compromised then at least you might still...
Read more »

Video of the Day – Pilot of “The Broken”

June 8, 2012
By
Video of the Day – Pilot of “The Broken”

Just noticed this on YouTube… Brings me back quite a few years but still a good watch. With the recent buy of Revision 3 by Discovery last month, this seemed like a good time to post. Kevin and Dan discuss some old school wireless hacking (fun to see that old equipment), downloading free software...
Read more »

Weekly Rewind – Top Industry News, LeakedIn, Cloud Issues, & More…

June 7, 2012
By
Weekly Rewind – Top Industry News, LeakedIn, Cloud Issues, & More…

If you missed anything or happened to be offline this past week, we hope you find this post useful as a quick reference. For those readers that may not have noticed, I actually tack on a bit of commentary to some the industry articles – so check out my italicized/bolded opinions and let me...
Read more »


About Us

Founded in 2008, NoVA Infosec is dedicated to the community of Metro DC-based security professionals and whitehat hackers involved in the government and other regulated verticals. Find out more on our About Us page.