Audits, Attacks and False Positives
by Reflare Research Team on Aug 24, 2018 3:16:00 PM
Recently, several security companies detected phishing pages using the name of a core DNC system. These pages attempted to trick users into providing their login credentials by spoofing the legitimate login page for a Democratic Congressional Campaign Committee (DCCC) application buil …
The Difficulty of Profiling Hackers
by Reflare Research Team on Aug 20, 2018 3:14:00 PM
The public image of any given group of people tends to be created by mass media. Whether it is a tribe of Amazonian warriors or a modern terrorist leader, mass culture will project its own image on them. Hackers are no different. First Published 20th August 2018 When kids get up to no …
Ticketmaster Hack and Shifting the Blame
by Reflare Research Team on Jun 29, 2018 3:00:00 PM
Ticketmaster UK has fallen victim to a security breach. The TLDR is pretty straightforward - but the detail is where things get interesting. Mainly because of how Ticketmaster is handling it, and how the banks and payment processors are reacting. First Published 29th June 2018 When yo …
Smartlocks and the Challenges of Specialisation
by Reflare Research Team on Jun 22, 2018 2:58:00 PM
These smartlocks have stirred up much conversation in the security community. While some people are pretty happy with the implementation, others feel that they shouldn’t be depended on. First Published 22nd June 2018 The key to happiness is not in the lock. 4 min read | Reflare Resear …
The European Commission's Exemption from GDPR
by Reflare Research Team on Jun 15, 2018 2:56:00 PM
A week after the EU’s new General Data Protection Regulation (GDPR) went into force, the European Commission seems to have dumped over a million visitors’ personal data on Google – without being compliant with GDPR. First Published 15th June 2018 General Data Protection Regulations fo …
The Challenges of Acquiring and Retaining Information Security Staff
by Reflare Research Team on Jun 1, 2018 2:52:00 PM
Employers need to recognise that hiring people with a single skill set into an infosec role will only work for a short time frame before there is either burnout, or the person you hired realises that this job doesn’t match their interests and aspirations. First Published 1st June 2018 …
US-CERT Releases Alert on Russian Activity
by Reflare Research Team on Mar 16, 2018 2:01:00 PM
A DHS and FBI joint technical alert describes cyber-enabled capabilities and actions related to the Russian Government compromising US-based networks and endpoints, as well as distributing malware, conducting spear phishing operations, and deploying network reconnaissance tools. First …
10% of ICO Funding Stolen by Hackers
by Reflare Research Team on Jan 26, 2018 11:19:00 AM
The question of investor protection and the lack of a safety net for contributors was recently brought to light when hackers managed to steal more than 10% of the Ether created in a crowd sale. First Published 26th January 2018 Investment Banker? Hacker? When it comes to going public, …
Uber - On Paying Ransoms
by Reflare Research Team on Nov 24, 2017 6:59:00 PM
Third-party cloud-based services are like a box of chocolates - you often don't know what you’re going to get. They could work perfectly, but they could also put you in a very uncomfortable position. First Published 24th November 2017 Uber, showing its hand. 4 min read | Reflare Resea …
Checking Boxes vs. Proactive Security
by Reflare Research Team on Oct 27, 2017 6:51:00 PM
While it is true that new vulnerabilities receive the most media attention, these issues are quite rare compared to well-known vulnerabilities. So, are our leaders focused on the security risks that actually matter? First Published 27th October 2017 Hey everybody - we are now 100% sec …