Comments for Intrepidus Group - Insight

Comment on Excuse me, your clouds are leaking by @bh_hig

@bh_hig — Thu, 26 Jan 2012 16:21:21 +0000

@Gliffy — while the IG point of view is people should have known better.. there is merit in trying limit the ways people can screw themselves. I don’t know if Gilffy has done a self-assessment of “how might people misuse, abuse, illicitly adapt, our offering?” I’m betting if your security engineers and abuse team sat down and brainstormed they would have drawn the conclusion that numeric URL scheme without randomization will not end well. That is the kind of thing that could have been identified in a threat model.

Comment on Excuse me, your clouds are leaking by yourmom

yourmom — Wed, 25 Jan 2012 20:23:55 +0000

What were your search terms? Did you add them to http://www.exploit-db.com/google-dorks/ ?

Comment on Excuse me, your clouds are leaking by Keith Rockhold

Keith Rockhold — Wed, 18 Jan 2012 23:33:37 +0000

Hi Insight-folks,

Thanks for posting this. We at Gliffy couldn’t agree more. We have warnings up on our site when someone performs actions that would cause them to share data to the public. Obviously, these have not been sufficient, so we’re going back to the drawing board a little, to improve these notifications. We’d love to hear from you or your readers on how to better keep our users informed of the current status of their data and the implications of their choices, without getting too much in their way.

That being said, it is all of our own responsibilities, particularly when using Cloud apps, to ensure the protection of our data. Thanks for the piece.

Keith Rockhold
Gliffy, inc

Comment on “Voight-Kampff’ing The BlackBerry PlayBook” at INFILTRATE 2012 by SosMedBlog » BlackBerry PlayBook Lets Hackers View Your Email

SosMedBlog » BlackBerry PlayBook Lets Hackers View Your Email — Wed, 18 Jan 2012 14:19:53 +0000

[...] Lanier and Ben Nell of Intrepidus Group were the ones who found the Bridge’s weak spot. They included it in their Blade Runner-themed [...]

Comment on “Voight-Kampff’ing The BlackBerry PlayBook” at INFILTRATE 2012 by BlackBerry PlayBook lets hackers view emails | All in One Phone and Tech

BlackBerry PlayBook lets hackers view emails | All in One Phone and Tech — Wed, 18 Jan 2012 14:15:14 +0000

[...] it hits RIM on its biggest strength compared to other devices: security.Zach Lanier and Ben Nell of Intrepidus Group were the ones who found the Bridge’s weak spot. They included it in their Blade Runner-themed [...]

Comment on “Voight-Kampff’ing The BlackBerry PlayBook” at INFILTRATE 2012 by BlackBerry PlayBook Lets Hackers View Your Email | Brian's Blog Site

BlackBerry PlayBook Lets Hackers View Your Email | Brian's Blog Site — Wed, 18 Jan 2012 13:30:56 +0000

[...] Lanier and Ben Nell of Intrepidus Group were the ones who found the Bridge’s weak spot. They included it in their Blade Runner-themed [...]

Comment on “Voight-Kampff’ing The BlackBerry PlayBook” at INFILTRATE 2012 by BlackBerry PlayBook Lets Hackers View Your Email | bursst.com

BlackBerry PlayBook Lets Hackers View Your Email | bursst.com — Wed, 18 Jan 2012 11:14:30 +0000

[...] Lanier and Ben Nell of Intrepidus Group were the ones who found the Bridge’s weak spot. They included it in their Blade Runner-themed [...]

Comment on “Voight-Kampff’ing The BlackBerry PlayBook” at INFILTRATE 2012 by BlackBerry PlayBook Lets Hackers View Your Email

BlackBerry PlayBook Lets Hackers View Your Email — Wed, 18 Jan 2012 11:09:34 +0000

[...] Lanier and Ben Nell of Intrepidus Group were a ones who found the Bridge‘s diseased spot. They enclosed it in their Blade [...]

Comment on ARM, Pipeline and GDB, Oh My! by peeyush

peeyush — Thu, 05 Jan 2012 16:08:02 +0000

The beauty of arm …. curse for programmer
excellent article … keep writing such…

Comment on WebOS: Examples of SMS delivered injection flaws by ezhanebrand

ezhanebrand — Thu, 29 Dec 2011 07:15:00 +0000

Don’t shoot the messenger. Nonetheless good examples, hopefully this brings some more awareness to attacks on wireless devices that utilize web applications. Good job.