December | 2009 | Andrew Hay

December 18, 2009
by Andrew Hay
12551 CommentWhen+Sensationalism+Trumps+Facts2009-12-18+21%3A02%3A59Andrew+Hay

When Sensationalism Trumps Facts

By now, everyone has heard about the malicious DNS hijacking of twitter.com by those clamining to represent the “Iranian Cyber Army”. Seeing this news spread, journalists have invented an enemy and laid blame based on…facts? No…wait…facts are defined as “Knowledge … Continue reading →

December 15, 2009
by Andrew Hay
12482 Comments2009-12-15+15%3A46%3A08Andrew+Hay

Information Security D-List Interview: Michael Santarcangelo

Today’s interview is with Michael Santarcangelo. Affectionately known “Santa” to his friends, Michael truly is a catalyst when it comes to changing how people think about information security. He’s helped me throughout my security career and has talked me down … Continue reading →

December 14, 2009
by Andrew Hay
12430 commentsHeading+to+ShmooCon+2010%212009-12-14+20%3A05%3A40Andrew+Hay

Heading to ShmooCon 2010!

Well it looks as though the stars have aligned and I’ll be heading to my very first ShmooCon! I’m really excited as I get to see friends and colleagues I either haven’t seen in a while or that I’ve yet … Continue reading →

December 14, 2009
by Andrew Hay
12370 comments2009-12-14+18%3A26%3A27Andrew+Hay

DECAF to Screw With Forensic Investigations

The for Detect and Eliminate Computer Assisted Forensics (DECAF) counter intelligence tool was specifically created around the obstruction of the well known Microsoft product Computer Online Forensic Evidence Extractor (COFEE) used by law enforcement around the world. From the DECAF … Continue reading →

December 14, 2009
by Andrew Hay
12260 comments2009-12-14+14%3A47%3A35Andrew+Hay

Information Security D-List Interview: Brian Honan

Today’s interview is with Brian Honan who lives in Dublin, Ireland. I’ve known Brian for a couple of years now and he is never shy to chime in with his ideas. He is also the first person to offer to … Continue reading →

December 11, 2009
by Andrew Hay
12330 commentslinks+for+2009-12-112009-12-11+20%3A05%3A13Andrew+Hay

links for 2009-12-11

Anton Chuvakin Blog – "Security Warrior": Log Management + SIEM = ? (tags: siem log management) Making Reviewing Files From Data Carving Easier: Documents (tags: data carving documents)

December 11, 2009
by Andrew Hay
12140 comments2009-12-11+14%3A41%3A12Andrew+Hay

Information Security D-List Interview: Nick Owen

Today we interview Nick Owen. I had the pleasure of meeting Nick at SecTor 2009 and he has a wealth of knowledge in areas that most people struggle in. Q: Tell me a little about yourself. I’m best described as … Continue reading →

December 10, 2009
by Andrew Hay
12040 comments2009-12-10+15%3A58%3A18Andrew+Hay

Information Security D-List Interview: Paul Asadoorian

Kicking off the Information Security D-List Interviews is Paul “PaulDotCom” Asadoorian. Paul gave me the opportunity to pick his mind via email and IM over the past week. Tell me a little about yourself. I live in Rhode Island, and … Continue reading →

December 10, 2009
by Andrew Hay
11980 comments2009-12-10+15%3A28%3A40Andrew+Hay

Done Something Illegal? Swap Out Your Finger Prints!

According to this article, a Chinese woman has managed to enter Japan illegally by having plastic surgery to alter her fingerprints. From the article: Lin Rong, 27, had previously been deported from Japan for overstaying her visa. She was only … Continue reading →

December 9, 2009
by Andrew Hay
11950 comments2009-12-09+19%3A05%3A40Andrew+Hay

Peer2Peer Session at RSA Conference 2010 – Selecting the Right SIEM Solution

My Peer2Peer Session submission on “Selecting the Right SIEM Solution” has been accepted at RSA Conference 2010. I’m really excited for the opportunity to hear how people are implementing SIEM solutions and what tips they can share with me and … Continue reading →