28 Sep 2012

When Log Files Attack: IEEE Data Leak

This week it was discovered that a large number member passwords and IDs of the Institute of Electrical and Electronics Engineers (IEEE) were exposed on a publicly available server. Roughly 100GB of log files were discovered by Radu Dragusin a teaching assistant in Denmark on an unsecured FTP server.  The

14 Sep 2012

Fifty Shades of Grey Hat: Hacking & Ethics

Over the summer attended and presented at several security conferences including Black Hat, Security B Sides and ToorCamp.  When I  explain the conferences and activities such as penetration testing and lock picking to those outside of the security community, I get a similar responses such as “isn’t that illegal?”  When