Archive by Author

Lack of HTTP Response Headers

24 May

CyberMatters does not produce HTTP security response headers!

Continue reading

Security / Inaction contradiction

10 May

In the blog Data Trust Gap I explored industry reports that customers see privacy as really important, and state it affects buying decisions, yet technology companies fall way short of being seen as trustworthy.

Subsequently, research from Intercede Trust in Security Low Among ‘Digital Natives’ shows a similar contradiction. Continue reading

Is your browser in the Goldilocks zone?

19 Apr

If your web browser is too old, you will not be able to access sites using strong security.
If your web browser is too new, it will prevent you accessing sites with weaker security.

So most corporates will need to make sure their browsers are just right – the Goldilocks zone – not too weak, but not too secure. Continue reading

Trustworthy Wallets

5 Apr

Bitcoin is a subject that Cyber Matters first reported on two years ago, concluding it was premature to invest, unless you can afford to lose your stake. Since that time, the underlying Blockchain has been gaining an increase in interest. Continue reading

Considerations when Managing IoT Device Keys

15 Mar

As we rapidly advance to the new world of the Internet of Things, security is slowly but surely starting to be talked about. Managing keys is an important part of this discussion.

Continue reading

How do you dispose of your Smart Home?

23 Feb

A few weeks back, I worked with the SH&BA to publish guidance on the Security of your Smart Home.

Shortly before we went to print I sold my car, and suddenly realised there was a big gap in the document.

Continue reading

Q: When will the IoT be secure? A: Never.

16 Feb

That may seem a bit bizarre coming from someone working for a company that specialises in making the IoT secure. Let me justify the comment. Continue reading

Why is my Password Too Long?

26 Jan

Dear Virgin Media

I recently decided it was time to change my password on my NTLWorld email account (managed by Virgin Media).  I entered a new password only to be told “Password too long”. How long was my password? 11 characters. 10 characters are OK apparently. Continue reading

Another week, another IoT security scare!

19 Jan

With the recent events and stories hitting the news, such as CES 2016 announcing plenty of new IoT products and new toys being hackable, no wonder I couldn’t miss the opportunity to talk about them – the first thing to catch my eye this week was ……

Continue reading

Could PAS 754 have helped Juniper?

13 Jan

In an important Juniper security announcement last month it was revealed that:

“During a recent internal code review, Juniper discovered unauthorized code in ScreenOS that could allow a knowledgeable attacker to gain administrative access to NetScreen® devices and to decrypt VPN connections.” Continue reading