Monday, September 08, 2014

Will the icloud hacking controversy interfere with apple inc iphone 6?

Posted via Composer

Top 5 Security Risks From Apple Inc., Google Inc & More
Chrome injects your passwords into your Apple KeyChain .. passwords from other devices injected into your iDevices when you use Chrome on a Mac

Posted via Composer

Article: Top 5 Security Risks quietly eroding your privacy
Beware of the Dropbox public folder …

Posted via Composer

Thursday, November 15, 2012

Non-Browser Software and SSL Certificate validation

Article highlighting software, code & middleware that primarily because of poor API design, and usage/configuration by developers, result in incomplete validation of SSL certificates, thus leaving systems vulnerable to man-in-the-middle attacks.

The author's frightenting conclusion, based only upong logic errors in client-side SSL certificate validation!: "Our main conclusion is that SSL certificate validation is completely broken in many critical software applications and libraries. When presented with self-signed and third-party certificates—including a certificate issued by a legitimate authority to a domain called —they establish SSL connections and send their secrets to a man-in-the-middle attacker."

There is a huge list of software, libraries, e-commerce SDKs, mobile SDKs, etc across many operating systems that are susceptible. This article is a must read for all developers that work with SSL/ security, and the issues should be addressed if you're dependent on any of services mentioned.

Review your usage of SSL in your environment, its one of cornerstones of security on the web and it doesn't take much effort to properly validate a certiifcate chain, and check for revocation.

The Most Dangerous Code in the World: Validating SSL Certificates in Non-Browser Software

Wednesday, November 14, 2012

How to Devise Passwords that Drive Hackers Away

Well its a good article, even if she didn't mention WISeID :-)

By the way the "Only Password you'll ever need."

is now available for Windows and Android with Face Recognition authentication.....

for FREE, so why not download a copy now..

Tuesday, October 02, 2012

Securing your company's IP

Good article on securing your company's intellectual property: particularly source code & software licenses...

Sunday, June 10, 2012

the ultimate FREE business card scanner for smartphone users...

I've been looking for it for a long time .... a FREE card scanning OCR app for iPhone...

Now with LinkedIN's aquisiton of CardMunch it has arrived... CardMunch using Mechanical Turk is set to change the landscape of cardscanning for business professionals. Card Munch uses artificial artifical intelligence i.e. real intelligent human transcriptions, not OCR; so forget about wasting your time correcting all those horrible OCR errors, its no longer necessary.

Check out LinkediN CardMunch for iPhone  ... its great, try it...

Saturday, June 02, 2012

How much are you worth to Facebook?

Would you like to know how much you are worth to Facebook ? Then calculate it at:

Do Not Track!

Turn on your browser’s “Do Not Track” feature!

The Do Not Track feature lets you express a preference not to be tracked by websites. When the feature is enabled, your browser will tell advertising networks and other websites and applications that you want to opt-out of tracking for purposes like behavioral advertising.

For more info on how to turn it on in Mozilla Firefox and Microsoft IE look here:

For Chrome:

1. Go to Options > Under the Hood > Content Settings.
2. Select ‘Do not allow any site to track my physical location’.
3. Once selected, you can close the dialog box.

Check out these great Chrome extensions:

Keep my Opt-Outs:

Do Not Track Plus:

Sunday, April 22, 2012

Peer Currency Transfers:

Transferring money WISely across currencies while avoiding onerous wire transfer fees - foreign exchange marketplaces - currency transfer networks ... the disintermediation of institutional currency exchange - 0.3% currency exchange fees vs the typical 3% or greater via "banks" - cheaper remittances

From my own experience there is a lot of potential here.. I've done bilateral currency exchange transactions with trading firms (import/export - particularly those with an import bias) who are typically always in need of foreign currency.. they've always sought out further transactions, and will always offer better than bank - usually somewhere between retail to interbank, and in times of extreme scarcity at retail ...i.e. they'll buy from you at the bank's retail offer price.

 - person to person currency exchange marketplace, customers exchange currency with customers
 - review and choose the best rate on offer from other customers
 - place your own rate and wait to be matched
 - no dependence on "interbank rates", customers sometimes achieve better rates than interbank

What I've found so far at the date of this post, please add any others you're aware of in comments: 

-  (supporting >10 countries/currencies) the best one so far IMHO
- (only supports EU and GBP)
-  (student payments)

Further reading:
- (on transferWISe)
- (CurrencyFair review)
- (peerTransfer coverage)

Startup of the Day:

TransferWISe - avoid onerous wire transfer fees  

NYSE:MUX - McEwen Mining Co.

Speculative... watch listed...
MUX is a special company, there is little to say about it now because earnings haven't really kicked in. I'm not going in-depth in this post, you've got to understand the metals sector and be able to speculate to risk this one...
Its attractive at these levels precisely because its undervalued viz its potential.
Some positives: it has a heavily invested founding CEO with a great industry reputation. But thats qualitative, without any hard quantitative evidence to back it up. That's the nature of risk.
Some negatives: its exposed to Argentina, and thus subject to the risk that the Argentinian government appropriates its mining rights. Its a junior minor i.e. tiny in comparison to other players in the industry - but thats also why its attractive, etc.
In summary do your own research and size appropriately to your risk appetite.. I'll bite into this, a very small bite, next week...
More reading:

Telefonica (ADR) - Bought 20/4

2012.04.20 I bought some TEF today, as it looks attractively undervalued with an 11% dividend yield. Note thought that management is initiating a share repurchase program and thus the cash dividend will probably decrease; plus historic results mean nothing. This is a long term investment, you should be comfortable holding for 3 years or more, and seeing Telefonica's price decrease even further in the interim. If the price does continue to decrease substantially then I may purchase more later ...
"Telefonica presents an appealing opportunity for dividends and stock appreciation. The Spanish company has tumbled in the last year as concerns over that country's economy have grown and Spanish bond rates have risen to 6%. The telecom giant, though, may not be as exposed to the struggling Spanish economy as it appears, since it generates much of its revenue from Latin America. In fact, about 70% of its 2011 operating income came from Latin America and the rest of Europe.

Telefonica's shares have dropped nearly 50% in the last year, and it recently reached a new 52-week low just under $15. As the stock has dropped, its dividend yield has soared, now up to 11.4%. Shares look affordably priced at a forward P/E of just 7, and the company brought in over 8 billion euros in free cash flow last year." Idea Source: Motley Fool