View Articles

Are DoS attacks just crashing or disrupt your service on the internet ?

Author: Bernard Sfez - Published

From what we are monitoring DoS denial of service (also named DDoS - distributed denial of service) attack are the most usual weapon in the worldwide and middle-east scene. It is cheap, easy to set up and doesn't require much knowledge. IT Admin tend to think that the technique consist only to overload the target servers by increasing exponentially the requests getting into it. But can it really hurts target's business or even disrupt country services for more than a short period of time ?

Beside direct motive like blackmailing/ doing harm to a competitor / political reasons for DoS attack. Are there other, more indirect motives ?
Would it be possible to get data or even control from the service with a DoS attack ?

How Social Media is transforming CRM

Author: Bernard Sfez - Published

It’s big news these days for tech watchers: CRM software stalwarts are rapidly acquiring startups that enable businesses to manage the increasing number and variety of social media platforms better. Oracle (ORCL) bought Vitrue to help it publish and manage social media campaigns, and the company just announced the acquisition of Collective Intellect to help it monitor social chatter. Salesforce.com (CRM) purchased social media performance and sentiment tracking company Radian6 and now is acquiring Buddy Media, a Vitrue competitor.

So there is a big interest between Social Media and CRM and one can not be handled properly anymore without understanding the second.
Here a small and easy to digest approach to understand how it can benefit your business.

Magento and Joomla RCE vulnerability endangering the platforms and their servers.

Author: Bernard Sfez - Published

A critical Remote Code Execution (RCE) vulnerability has been found and confirmed on the e-commerce platform (owned by eBay) Magento. The vulnerability is affecting hundreds of thousands of online merchants worldwide and if exploited, the critical vulnerability could allow a hacker to compromise completely any online store powered by Magento and gain access to credit card details and other financial as well as personal information related to the customers.

The vulnerabilities that lead to remote code execution (RCE) flaw are present in the Magento core code, and affect the default installation of both Magento Community and Magento Enterprise Editions.

Password, Passkey, Access, Login and Credentials why ?

Author: Bernard Sfez - Published

While there are plans to move the identification method to the next level using a Microchip implemented under our skin passwords are now a part of our (must of us) life. I wrote life and not digital life because there is no more such thing.

Realize that your family, personal, business and financial life is protected by a few strings of characters. So (big) yes good password is important no matter how poisoning it is to manage them. Manage them because it is important to change them from time to time, important to have a password for every thing, or at least a password for a group of lock, important to take the time and not try to avoid complication by bypassing simple security practice.

As always I'll try to Keep It Simple Stupid using a handy guide published by the F-Secure team that will help you to improve your every day security to protect privacy and business assets.