31 Jan '13, 7pm

“Programmer Bob”: Latter-Day Tom Sawyer or Massive Security Risk?: “Bob” outsources his programming assignments ...

At first I thought this was one of those IT urban legends, like the “disappearing warehouse ” story, but according to Verizon's IT security risk team, it's all true. A few weeks ago, Verizon wrote on its IT security blog that it was asked to perform a security assessment for a U.S.-based client after the latter was “startled” to discover a live “open and active VPN [virtual private network] connection from Shenyang, China!” What made the client thoroughly worried about this surprisingly open communication port to China was first that it was a U.S. critical infrastructure company; second, it had two-factor authentication for its VPN connection, which had obviously been breached and, third, “the developer [given the pseudonym “Bob”] whose credentials were being used was sitting at his desk in the office.” In other words, “the VPN logs showed [the developer] logged in from Ch...

Full article: http://spectrum.ieee.org/riskfactor/computing/it/programm...

Tweets

Hey guys, do you think this is #bullshit ? Let'...

spectrum.ieee.org 06 Feb '13, 8pm

At first I thought this was one of those IT urban legends, like the “disappearing warehouse ” story, but according to Veri...

This is insane. RubyGems got hacked, millions o...

venturebeat.com 31 Jan '13, 5am

Ruby package distributor RubyGems.org was hacked today, disrupting web developers globally and causing service shutdowns a...

A Security Data Analyst position is currently o...

afilias.info 30 Jan '13, 4pm

As a Security Data Analyst, you will make an impact by directly reducing the amount of spam, malware, and other malicious ...

Even if you don't use Ruby or Rails, embedding ...

alistapart.com 08 Feb '13, 6pm

Look for analytics providers and other folks on that list who have instructed you to embed JS on your website. If I do thi...

The Very Best of Day Two From #NWRBC

The Very Best of Day Two From #NWRBC

sprudge.com 04 Feb '13, 8am

NWRBC was a three-day affair, and Sprudge.com was there to cover each and every competitor and routine in its entirety. He...

When you're networking ask "What is the typical current pay range for x position." #military

When you're networking ask "What is the typical...

clearedjobs.net 30 Jan '13, 3pm

May is National Military Appreciation Month. Each day this month we highlight articles to aid transitioning military in th...

hacked, interrupting Heroku services and puttin...

venturebeat.com 31 Jan '13, 4am

Ruby package distributor RubyGems.org was hacked today, disrupting web developers globally and causing service shutdowns a...

Lautenberg, MacAuliffe, White House give Senato...

ace.mu.nu 31 Jan '13, 11pm

Amusing: Reporter Takes the Piss Out of Videobomber White House, Lautenberg Shift Away from Senator Bob Menendez Update --...

Speaker’s Series: Building a Winning Team by Dr...

sgentrepreneurs.com 30 Jan '13, 10pm

, Consulting Professor, Stanford School of Engineering, Adjunct Faculty Member for NUS Overseas Colleges Program in Silico...

For those concerned about @padrinorb in the lig...

padrinorb.com 04 Feb '13, 4pm

Rails and the Ruby community had their fair share of security vulnerabilities in the recent days. Where does that leave Pa...