Target Security Breached: What You Need to Know
All it takes is one big nasty security breach and the whole world will be watching you through a ...
Continue Reading
Password Sharing Across Accounts
Over the past few years we have seen a large number of databases get compromised leading to the ...
Continue Reading
Scary Web Services: Part 1
I have several things I want to say about web services but for this post I am going to constrain ...
Continue Reading
Professionally Evil Toolkit - Recon-ng
The first stage of almost every successful penetration test is the reconnaissance phase. During ...
Continue Reading
Who are we: Jason Gillam
In this series of posts we are introducing staff members at Secure Ideas to give you a quick ...
Continue Reading
Web App Pre-Flight
I think that it is because of my background in software development that I am passionate about ...
Continue Reading
Security Tubthumping
I have a friend who is an alcoholic. A few weeks ago after 5 years of sobriety, she stumbled and ...
Continue Reading
Professionally Evil: Self Inflicted Injury at Vendor's Request
It’s an unfortunate and still too common a vulnerability to find administrative interfaces exposed ...
Continue Reading
SIAM: Custom Testing Machines
Secure Ideas recently made the decision to create custom machines that we could use for penetration ...
Continue Reading
We Can't Rely on the Browser for Protection
A large part of doing security consulting is providing proper mitigations and recommendations to ...
Continue Reading
Industry Issues: New Vulnerabilities and Marketing Problems
As a consultant, I spend a lot of my time working with organizations and staff to help them improve ...
Continue Reading