Security, Simplified.Tumblr (3.0; @403labs)http://blog.403labs.com/Our friend and colleague, Walt Conway, posted a great column on the Windows XP sunset over at...http://blog.403labs.com/post/47486913106http://blog.403labs.com/post/47486913106Mon, 08 Apr 2013 17:17:00 -0500pcidsspadsspentestsubmissionpcimicrosoftwindowsxplifecyclesupportcomplianceriskhipaaasvIf you’re trying to extract a Squashfs and get a zlib::uncompress failed, unknown error -3...http://blog.403labs.com/post/44787007255http://blog.403labs.com/post/44787007255Thu, 07 Mar 2013 09:47:00 -0600squashfslzmaextractcompressiondecompressfilesystemzlibreverseengineeringbacktracklinuxsubmissionOn January 17th, the U.S. Department of Health and Human Services (HHS) announced several changes to...http://blog.403labs.com/post/41711188444http://blog.403labs.com/post/41711188444Mon, 28 Jan 2013 11:57:46 -0600hipaaphibreachriskassessmenthitechhhshealthcareomnibusinsuranceprivacysecurityinfosecsubmissionI recently purchased a Samsung Galaxy Note II and have been thoroughly enjoying it. The number of...http://blog.403labs.com/post/38403318223http://blog.403labs.com/post/38403318223Thu, 20 Dec 2012 14:26:07 -0600exynosvulnerabilitymalwareexploitsamsungandroidgalaxyinfosecsecuritydatabreachsubmissionOn Friday, December 14, Brian Krebs posted an entry titled, “LogMeIn, DocuSign Investigate Breach...http://blog.403labs.com/post/38311599743http://blog.403labs.com/post/38311599743Wed, 19 Dec 2012 11:13:33 -0600submissionspamphishingemailinfosecsecuritymalwarefraudlogmeindocusignbreachAs a Payment Card Industry Forensic Investigator (PFI), 403 Labs is constantly examining the latest...http://blog.403labs.com/post/38226340746http://blog.403labs.com/post/38226340746Tue, 18 Dec 2012 08:42:06 -0600pcidsspentestsubmissionmacapplekeyloggerbreachforensicspfiposinvestigationfirewallmalwareYesterday, the Senate Judiciary Committee gave approval to a privacy bill sponsored by Sen. Al...http://blog.403labs.com/post/37915084826http://blog.403labs.com/post/37915084826Fri, 14 Dec 2012 11:12:21 -0600infosecsecuritygoogleappleprivacyfrankendatamobileapplicationlocationsubmissionPCI DSS Requirement 12.1.2 tells merchants and service providers that they must prepare a formal...http://blog.403labs.com/post/36066605285http://blog.403labs.com/post/36066605285Mon, 19 Nov 2012 09:17:16 -0600pcidsssubmissionriskassessmentqsapci12.1.2guidelinesmerchantsserviceproviderssigpcisscI recently contributed a module, pgpass_creds, to the Metasploit Framework. It is a post module that...http://blog.403labs.com/post/35272464611http://blog.403labs.com/post/35272464611Thu, 08 Nov 2012 09:16:57 -0600credentialsexploitinfosecmetasploitpentestpgpasspostgresqlsecuritysubmissionmsfThe Payment Card Industry Security Standards Council (PCI SSC) made several significant developments...http://blog.403labs.com/post/33429817198http://blog.403labs.com/post/33429817198Fri, 12 Oct 2012 09:41:10 -0500padsspcidsssubmissionpinp2peencryptionpoint-to-pointpcisscptssecurityinfosecGraphics processing units (GPUs) are incredibly fast at processing repeated tasks in parallel....http://blog.403labs.com/post/32397670345http://blog.403labs.com/post/32397670345Thu, 27 Sep 2012 11:07:00 -0500pentestsubmissionhashcatgpupasswordcrackingbrute-forceutilizationmaskmaskprocessorworkloadAs a technologist and security enthusiast, part of the “fun” we have at work is tossing...http://blog.403labs.com/post/32348548783http://blog.403labs.com/post/32348548783Wed, 26 Sep 2012 15:59:21 -0500infosechackersecuritymedicalhipaadatatheftpiiprivacyphihealthcaresubmission16 times (not nine). 16 TIMES! That’s how many times I needed to provide my Social Security number...http://blog.403labs.com/post/31994218072http://blog.403labs.com/post/31994218072Fri, 21 Sep 2012 13:29:17 -0500iphoneappleidentitysocialsecurityssncreditcardlicensetheftinfosecsecuritysubmissionWhether you are experienced with electronic discovery (e-discovery) or new to the process, the...http://blog.403labs.com/post/31985541510http://blog.403labs.com/post/31985541510Fri, 21 Sep 2012 10:03:00 -0500anti-virusassessmentavcasedatadiscoverydlpe-discoveryecaelectronicforensicsinfoseclogssecuritysubmissionpfiThis is part 3 of a 10-part series. Be sure to check out part 1 and part 2 if you haven’t...http://blog.403labs.com/post/31924845591http://blog.403labs.com/post/31924845591Thu, 20 Sep 2012 10:46:00 -0500pcidsspentestsubmissionowaspapplicationdevelopmentinfosecsecuritycoding6.5sessioncredentialsauthenticationBrookfield, WI – September 11, 2012 – 403 Labs, LLC, a leading information security consulting and...http://blog.403labs.com/post/31328675945http://blog.403labs.com/post/31328675945Tue, 11 Sep 2012 04:56:00 -0500padsspcidsspentestsubmissionabout403forensicsinfosecpressreleasesecuritycomplianceI recently sat in on a webinar on the future of advanced persistent threats (APT). A few things...http://blog.403labs.com/post/29971842507http://blog.403labs.com/post/29971842507Wed, 22 Aug 2012 11:49:00 -0500pentestsubmissiongaussstuxnetduquflameaptadvancedpersistentthreatinfosecsecurityThis presentation by Pete Arzamendi, CISSP, QSA, PA-QSA, GREM, a consultant at 403 Labs, was given...http://blog.403labs.com/post/29624175569http://blog.403labs.com/post/29624175569Fri, 17 Aug 2012 10:29:00 -0500dynamicforensicsinfosecmalwarememorypentestpresentationsecuritystaticsubmissionanalysisIf you are a merchant with a third-party system integrator or software reseller that installed or...http://blog.403labs.com/post/29479959575http://blog.403labs.com/post/29479959575Wed, 15 Aug 2012 09:04:05 -0500padsspcidsssubmissionqirintegratorresellerpaymentapplicationsecurityinfosecvendorimplementationBrookfield, WI – August 2, 2012 – 403 Labs, LLC, a leading information security consulting and...http://blog.403labs.com/post/28547479333http://blog.403labs.com/post/28547479333Thu, 02 Aug 2012 03:56:00 -0500about403e-discoveryforensicsincidentresponseinfosecpressreleasesecuritysubmissionpfi