Jump to content
Killersites Community


  • Content Count

  • Joined

  • Last visited

  • Days Won


LSW last won the day on October 11

LSW had the most liked content!

Community Reputation

37 Excellent

1 Follower

About LSW

  • Rank
    Cybersecurity Advocate

Profile Information

  • Gender
  • Location
  • Interests
    Avoiding computers because they are evil.

Recent Profile Visitors

36,930 profile views
  1. LSW

    Current Threats

    Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info https://thehackernews.com/2018/10/tumblr-account-hacking.html If you used tumblr, this would be a good time to change your password to a strong passphrase. LSW
  2. LSW

    Mobile Style Sheet

    Really there is no need for a separate CSS for mobile devices. Just make all your CSS use flexible sizing using %. This way it will downsize to fit the screen whether it be cell phone, tablet, monitor or TV. This is a basic of accessible web design for all users and not just mobile users.
  3. LSW

    Current Threats

    Tens of Millions of U.S. Voter Records for Sale https://www.bleepingcomputer.com/news/security/tens-of-millions-of-us-voter-records-for-sale/
  4. LSW

    Patch Tuesday Updates (Windows)

    To go along with this month's M$ patches, Adobe has released some as well. Adobe Releases Security Patch Updates for 11 Vulnerabilities https://thehackernews.com/2018/10/adobe-security-updates.html
  5. LSW

    Patch Tuesday Updates (Windows)

    Microsoft October Patch Tuesday Fixes 12 Critical Vulnerabilities https://thehackernews.com/2018/10/microsoft-windows-update.html
  6. LSW

    Cybersecurity News

    Adobe News Adobe Releases Security Patch Updates for 11 Vulnerabilities [10/10/2018] Flash You should really block Flash on your browsers, it is a serious vulnerability for you. Adobe Issues Patch for Actively Exploited Flash Player Zero-Day Exploit [6/8/2018] (Unpatched) Adobe Flash Player Zero-Day Exploit Spotted in the Wild [1/2/2018] Hackers Use New Flash Zero-Day Exploit to Distribute FinFisher Spyware
  7. LSW

    Current Threats

    From Now On, Only Default Android Apps Can Access Call Log and SMS Data https://thehackernews.com/2018/10/android-app-privacy.html 👍 Maybe a little late, but good call!
  8. LSW

    Current Threats

    Google Forced to Reveal Exposure of Private Data https://www.databreachtoday.com/google-forced-to-reveal-exposure-private-data-a-11587
  9. LSW

    Current Threats

    Google+ is Shutting Down After a Vulnerability Exposed 500,000 Users' Data https://thehackernews.com/2018/10/google-plus-shutdown.html
  10. How to Start a Career in Cybersecurity: All You Need to Know https://thehackernews.com/2018/10/cybersecurity-jobs-salary.html
  11. LSW

    How Do You Programmers Type?

    Mine is more a hybrid 5 finger hunt and peck, first two fingers of each hand and one thumb. I typed alright in high school, then 25 years in Germany doing the German keyboard and then back to 12 years on an English keyboard. I learned typing in English, but I learned coding in German. So typing emails I am faster, but typing in code, I still find myself going for the German keys on US keyboards so much more hunt and peck. I have a good speed for a modified two finger typer. Have you ever heard this joke?: A boy stands in the study door watching his father peck away on a laptop. He then finds his mother in the kitchen typing away like a storm with all 10 fingers. He grunts and his mom looks up and asks him what he is grunting about. "I thought you were good at typing. But dad is better, he only needs two fingers." Cheers!
  12. SSO is almost everywhere, and once embedded it is as hard to dig out as a tick. It is a battle I have been fighting the last year, those in charge want things easy for the employees and the employees don't want to have to remember lots of passwords. I get it. But I get paid to worry, and what I see is an attacker breaking the SSO password and now having access to all the applications our employees use, many of which have access to both personal Personally Identifiable Information (Pii) as well as Health information. So the issue is really simple, the user need only remember one password and the attacker need only break one password to have the keys to the kingdom. Social logins are the same way. SSO is simply easier for you isn't it? But now Facebook has lost 50 mil. tokens that can be used to get into those users other sites. They can now breach your twitter account, facebook account, Google account and what else? If I can now get in your Google account, I can reset things, I can change your telephone number to mine, have your second authorization come to my phone. Ask yourself, is my mobile phone number available on my accounts? Ever heard of SIM Switching? I can call a mobile phone host, create an account and say "I want to come to you, please switch my telephone number" and usually with little to no checking of authorization they will activate your number in my new phone, now I can get access to any account attached with that phone number, I can even empty your bank account. So what is more important to you? Your security or your ability to quickly switch between facebook and twitter etc. without logging in again? Experts' View: Avoid Social Networks' Single Sign-On https://www.databreachtoday.com/blogs/experts-view-avoid-social-networks-single-sign-on-p-2670
  13. LSW

    Wi-fi is being rebranded

    Wi-Fi now has version numbers, and Wi-Fi 6 comes out next year https://www.theverge.com/2018/10/3/17926212/wifi-6-version-numbers-announced
  14. Major Complaints About the iPhone XS Are Stacking Up https://gizmodo.com/major-complaints-about-the-iphone-xs-are-stacking-up-1829447724
  15. Tempted to let your old domain lapse? Read this first… https://www.stationx.net/tempted-to-let-your-old-domain-lapse-read-this-first/ StationX offers some excellent training courses.