Walking Through The Front Door: SQL Injections

Walking Through the Front Door   Many corporations today have become dependant upon their websites.  Where once websites were simply information portals or advertisments for their owners, they have transformed into something far greater.  Today companies all over the world rely on their websites to log in remotely, provide news and information to employees and […]

Only 18% of Software Apps Pass Security Tests

Over the past 18 months, almost 10,000 software applications from the government and private sector were submitted to Veracode’s online security testing platform for independent security auditing and 8 out of 10 failed to achieve an acceptable level of security on their first try. Veracode reached this conclusion by automatically checking submitted apps for over 100 types of flaws. […]

An Analysis of A NASA Dbase Hack-and-Dump

[Editor’s note: this analysis predates any official announcements by NASA] Recently, some news of a NASA hack-and-dump passed my twitter deck.  I decided after watching a few of my friends re-tweet the news that it might be worth checking out.  At least I’d see if I could perform some password analysis on any dumped credentials, […]

VoltDB for faster, scalable relational databases

VoltDB is a blazingly fast relational database system. It is specifically designed for modern software applications that are pushed beyond their limits by high velocity data sources. This new generation of systems – real-time feeds, machine-generated data, micro-transactions, high performance content serving – requires database throughput that can reach millions of operations per second. What’s […]

Passwords Suck: Learn about and use multi-factor authentication

Passwords suck. They are long, hard to remember (even if you have easier-to-remember phrases), moreso when new, and are largely a difficulty for users to user properly.  Combined with the fact that many users choose easy-to-guess or easy-to-ascertain passwords based off of commonly-known facts about themselves and that they will try all of their passwords […]

MongoDB (10gen): Offers production support, training, and consulting for MongoDB

MongoDB (once named 10gen) provides a comprehensive range of services to enable you to get the most out of commercial-grade deployments of MongoDB. They develop MongoDB, and offers production support, training, and consulting for the open source database. MongoDB was founded by former DoubleClick Founder and CTO Dwight Merriman and former DoubleClick engineer and ShopWiki […]