Davi Ottenheimer, Author at Security Boulevard
San Francisco Tenderloin Fentanyl Epidemic Kills 3X COVID19

San Francisco Tenderloin Fentanyl Epidemic Kills 3X COVID19

| | security
Stunning reporting from San Francisco reveals the crisis situation: The story that stuck with me most came from Greg Moore, director of safe programs for the Tenderloin Community Benefit District. Last month, he was walking at Turk and Hyde streets when he saw a driver in a sport utility vehicle ... Read More
VPN Kill Switch Configuration Uncovers Fake Ubiquiti Whistleblower

VPN Kill Switch Configuration Uncovers Fake Ubiquiti Whistleblower

| | security
Here’s a crime story with multiple interesting twists. Perhaps the biggest news is this part: …former Ubiquiti developer, who has reportedly been charged with stealing data and trying to extort his employer while pretending to be a whistleblower. Pretending to be a whistleblower in order to gain power or extort ... Read More
The Next HOPE (2010): Easy Hacks on Telephone Entry Systems

Easy Hacks on Telephone Entry Systems

| | security
Blast from the past. Here’s my Channel 2600 recording from the Next HOPE (2010): Telephone entry systems are practically everywhere in the city. An investigation after a series of break-ins uncovered several shockingly simple bypass techniques currently used by criminals. This presentation explains how the common keypad box will grant ... Read More
How to abseil a 200 foot tree with 100 feet of rope

How to abseil a 200 foot tree with 100 feet of rope

| | history, security
Get a longer rope. Here is an amusing footnote from a history of the British special forces. The shift from Wingate’s 1940s “long line” marches into Malaysia towards parachuting directly above in the 1950s had a slight “hang up”: Equipped with 100 feet of rope, the paratroopers would tie the ... Read More
Illustrations of Accuracy vs Precision and Bias

Illustrations of Accuracy vs Precision and Bias

| | security
I find the six-sigma “bullseye” illustration of the accuracy vs precision problem… somewhat imprecise. (a) Not Accurate, Not Precise (b) Accurate, Not Precise (c) Not Accurate, Precise (d) Accurate, Precise I mean there are so many “quality” applications other than trying to narrow everything to a point in order to ... Read More

New UK “Ranger Regiment” to “match brainpower with firepower”

| | history, security
The key takeaway from UK news about their Ranger Regiment design is that they’re claiming a need to move from training/advisory to “expeditionary” roles that go into the field with the forces they’re training. Training, advising and accompanying partner forces dealing with extremist organizations and hostile state threats… creation of ... Read More

US Retailers Pull Surveillance Company Products Linked to Genocide

| | security
Some argue a national security concern was the greater driver for pulling product off retail shelves. Either way the result is Dahua products such as Lorex are gone from Lowe’s and Best Buy, which should tell you something about where might be safest to shop in America. Best Buy, Home ... Read More

Alibaba “Most-Privilege” Cloud Access Model Compromised

| | security
Everyone and their dog knows that Unix systems come with a “least-privilege” default, which for some reason was flipped on its head when Alibaba created a service model. Trend Micro reports: …the default Alibaba ECS instance provides root access…all users have the option to give a password straight to the ... Read More

AllTrails is Centrally-Planned Centrally-Managed System Dangerous to Hikers

| | security
An interesting Bay Area article has taken AllTrails to task for being a heavily funded attempt to centralize and plan an economy, without investing in data integrity required to keep people safe. I get a call from Meaghan Praznik, AllTrails’ head of communications. I ask her why my email led ... Read More

Danish Navy Intercepts Pirates, Kills Four

| | Sailing, security
The US Naval Institute reports that ladders in a speedboat were one indicator that led to interception near Malaysia: The ship was responding to reports of pirate activity and heading to the scene while sending it’s embarked Royal Danish Air Force MH-60R helicopter in advance to observe the area, according ... Read More