Terry Zink: Security Talk

Discussing Internet security in (mostly) plain English

  • Terry Zink: Security Talk

    Wonder what China is doing with all of those APTs? Now you know.

    • 0 Comments
    Did you ever wonder what China is doing with all of those Advanced Persistent Threats that they are tossing at US companies, trying to steal their secrets (allegedly)?  The answer is they give them to their own home-grown companies.  Here’s...
  • Terry Zink: Security Talk

    My great idea–quashed by political correctness

    • 5 Comments
    I had a great idea at work. We’re looking at a future feature wherein we allow users to block email by language.  If you’re an English speaker and never receive mail in Chinese, you can set an option to block all Chinese mail.  Want no Spanish...
  • Terry Zink: Security Talk

    What Apple’s security response can learn from Microsoft

    • 2 Comments
    A couple of days ago, Ed Bott posted an article on ZDNet entitled What Microsoft can teach Apple about security response .  This is in response to how Microsoft deals with security vulnerabilities and applies updates, vs how Apple does it (did it...
  • Terry Zink: Security Talk

    Sophos’s list of top spamming countries vs Forefront Online’s list

    • 1 Comments
    Last week, Sophos released a blog post on the top 12 countries that relay spam during the first three months of 2012.  Their summary: The country with the highest amount of spam sent is India. Spam has decreased over time because of better efforts...
  • Terry Zink: Security Talk

    Floating villages of Cambodia

    • 0 Comments
    While we were in Cambodia, we visited the floating villages, located not too far from the city of Siem Reap.  We took a boat ride down the muddy river which took about 30 minutes: Along the way, I was reminded that we were definitely in the 3rd world...
  • Terry Zink: Security Talk

    Pictures of Angkor Wat

    • 1 Comments
    This post has nothing to do with spam, malware or security.  Instead, you can file this under It’s-my-blog-and-I’ll-post-what-I-want-to. Anyhow, the past couple of weeks I was in Cambodia and Bali (Indonesia).  It’s been my life long dream ...
  • Terry Zink: Security Talk

    Was gone, but back now

    • 0 Comments
    I was gone for the past couple of weeks in Cambodia and Indonesia, but I’m back now and ready to post some more. Whenever I travel overseas, I like to look at the various pieces of technology that people are using.  After going to these two countries...
  • Terry Zink: Security Talk

    Statistics on spoofed mail

    • 1 Comments
    The other day, I decided to investigate some potential efficacy rates of using DMARC.  Would using DMARC result in catching spoofed mail?  Are spoofers abusing certain brands en masse? To check this, I decided to take a look at how much mail...
  • Terry Zink: Security Talk

    Spam levels still lower a year after Rustock

    • 0 Comments
    Arstechnica wrote an article this past weekend entitled Spam levels still low a year after Rustock botnet takedown .  From the article: In March 2011, a Microsoft-led team targeted and decapitated the Rustock botnet, and a dramatic decrease in spam...
  • Terry Zink: Security Talk

    Mac users hit by another wave of malware

    • 0 Comments
    In case you haven’t been watching cyber news recently, last week various security researchers published that Macs were infected by the Flashback Trojan and that the total number of infections worldwide was 600,000.  This number was published by a...
  • Terry Zink: Security Talk

    SOPA fears risk blocking new cyber-security bill

    • 0 Comments
    Building on my previous post about upcoming proposed cyber legislation, a couple of other articles appeared in the past couple of days that discuss the smaller likelihood of passing the bills because lawmakers are spooked that they may face another SOPA...
  • Terry Zink: Security Talk

    Upcoming proposed cyber legislation

    • 0 Comments
    Yesterday I read the article Cybersecurity is entangled in Washington turf wars on Politico.  The article talked about how there are a lot of competing cyber security bills being proposed in Washington (D.C.) right now.  I thought the article...
  • Terry Zink: Security Talk

    Pinterest spammer finds it easy to make money

    • 0 Comments
    About a week ago, I read an article on SecurityNewsDaily where a spammer gave an interview to The Daily Dot and explained his methods.  He claimed not only was he making $1000 per day spamming and scamming Pinterest, but that it was really easy....
  • Terry Zink: Security Talk

    How China steals our secrets

    • 0 Comments
    Former US counter terrorism director Richard Clarke has another article up in the New York Times entitled “ How China Steals Our Secrets .”  It’s similar to an article that I wrote about last week.  In it, he recounts how nearly all US companies...
  • Terry Zink: Security Talk

    Former US counter-terrorism director speculates who was behind the Stuxnet attack, and talks about China’s role in espionage

    • 1 Comments
    The title of this post is a record for my longest post title ever.  But I had to get everything in there lest you think this blog post is only on one topic. The story of Stuxnet occurred in 2010 and it seems like forever ago.  And since that...
  • Terry Zink: Security Talk

    U.S. Outgunned in Hacker War

    • 0 Comments
    The Wall Street Journal has an article up today with an interview with outgoing head of the FBI’s cyber crime investigation Shawn Henry.  In it, he has a blunt assessment of the US’s capabilities when it comes to combatting online crime, especially...
  • Terry Zink: Security Talk

    Top Anonymous/LulzSec hacker caught

    • 0 Comments
    This is an old story (where old > 2 weeks), but I still want to write about it. Nine months ago, I wrote a post where LulzSec decided, after 9 weeks of mischief, to call it quits .  This was in June, 2011. About three weeks ago, the FBI announced...
  • Terry Zink: Security Talk

    Spam catch rates drop

    • 0 Comments
    I was reading All Spammed Up’s recent post entitled Are Spam Filters really that Bad?   It is referring to the latest test to come out of Virus Bulletin where they measure the efficacy of a variety of antispam products: In the latest VBSpam comparative...
  • Terry Zink: Security Talk

    Has the Zeus disruption affected spam at all?

    • 0 Comments
    I’ve written a number of times in the past about which botnets send us the most spam.  Cutwail is always in the top 3. With the Zeus disruption, has this affected Cutwail at all?  Cutwail is not necessarily related to Zeus; as I said in my previous...
  • Terry Zink: Security Talk

    Microsoft disrupts the Zeus infrastructure

    • 0 Comments
    Over the weekend and this morning, Microsoft, working in conjunction with others, issued civil lawsuits to sinkhole numerous domains associated with the Zeus botnet.  When I say “botnet”, I use the term loosely because Zeus is not a botnet in the...
  • Terry Zink: Security Talk

    Think SPF is widely deployed? Think again.

    • 3 Comments
    With all the hoopla surrounding DMARC, I thought I would take the time to see how SPF is functioning in real life, at least in our network. According to DMARC documentation, SPF and DKIM adoption is reaching critical mass (see page 5 of that link): Over...
  • Terry Zink: Security Talk

    Internet pharmacies and bad registrars

    • 0 Comments
    Last week, Krebs on Security reported on how 50% of online pharmacies’ domains are registered on only two different registrars – Internet.bs (what a curious name) and Ukranian Names.  Internet registrar watchdog Knujon also released a report about...
  • Terry Zink: Security Talk

    The pros and cons of graylisting

    • 0 Comments
    Graylisting is an antispam technique that works by taking advantage of sender reputation.  Specifically, the lack of a good or bad reputation gives the sender a chance to prove themselves worthy of delivery.  The basic idea is that a good sender...
  • Terry Zink: Security Talk

    Predicting the future of abuse, part 2

    • 0 Comments
    Following on from my previous post, what does the future of Internet abuse look like?  Here’s what I think: The proliferation of smaller devices will shift malware away from PCs to phones and tablets Crime will not go away.  The reason criminals...
  • Terry Zink: Security Talk

    Predicting the future of abuse

    • 0 Comments
    A couple of months ago, I wrote about IBM’s predictions for 2016 , and one of those was that there would be no more spam.  As I look around at other predictions about the future, I say to myself “Self, what do I think will be the future of abuse...
Page 7 of 46 (1,133 items) «56789»