This has really captivated my interest as of late. Still figuring things out..
Credentials are highly sought after data, only second to financial account information. Read the Verizon DBIR – http://www.verizonenterprise.com/DBIR/2015/. It’s in there somewhere.. Everyone is a target. You might not be the real target, but who are your customers? Hackers == Slimy Used Car Salesmen: They’re all looking for the easiest way to a buck and you, Mr Customer, could very easily be an unwilling participant for either of those people. Looking at the hacker use case, your credentials can be monetized either directly or indirectly, depending on the account. SSL/TLS is really great, but isn’t […]
I operate (loosely) a couple of small websites. None of them make any money but all of them seem to get attacked on fairly regular basis. Of course, I keep track of the attacks in Splunk so I can make pretty graphs and such but I’ve not been using the data to it’s fullest potential. This is something I’ve been meaning to build for a while, but have just recently gotten around to doing.. With that, I introduce the Spork Threat Feed. *applause* The world really needs another threat feed? […]