I phoned my bank to activate my card the other day. The automated voice required a date of birth and the number of digits in my Mother’s maiden name. Lets assume an attacker can get this information, lets be realistic, what could really happen?

Lets explore some ideas of what an attacker could do with enough [...]

This article discusses some simple, easy to follow steps to increase your personal security on Facebook.

Golden Rule - Assume that the personal information and photos you display are publicly available and now just available to specific friends.
Strong Passwords - It may seem obvious but make sure you use a strong password for your account. Also, [...]

Having fun with FeedBurner Awareness API.

The FeedBurner Awareness API (AwAPI) allows publishers of FeedBurner feeds to reuse the detailed traffic statistics we capture for any of their feeds. Third-party applications and web services that consume feeds can leverage this data to provide useful feed awareness statistics to potential subscribers… - awarenessapi

In October 07, BlogSecurity released [...]

I really love the Gravatar concept. Its simple, useful, powerful and centrally managed, but how secure is it to use on a blog or service?

Regular users may have already seen that we have implemented Gravatars onto BlogSecurity; so its safe to use then, right?

I made a point on our new BlogSec-News service a couple days [...]

The First Security- & Bugfix Release of the latest WordPress branch is now available. WordPress do not mention the vulnerabilities fixed on the download page, but BlogSec recommended 2.5 users upgrade ASAP.

Of all the bugs fixed, two fairly critical security issues were fixed. A Cross-Site Scripting vulnerability and the WP 2.5 Cookie Integrity Protection [...]