In February, we visited the RSA Conference at San Francisco. This is the biggest event of the IT security industry with about 25.000 attendees, 365 exhibitors, and hundreds of sessions held by thought leadership experts. This post is focusing on a megatrend that was articulated at the conference as the key driver of our industry in the next years: Big Data Security. Let me summarize my thoughts on BDS and its relationship with BalaBit technologies. Big Data Security – another buzzword or something more?Perhaps, we all feel the same when we hear “Big data” security: it is a ... [Read More]

A few day ago Revuln a maltese security company has published a 0-day exploit in Samsung SmartTV's firmwares. The remote root exploit have a complete control on a TV: download USB media history, install any app, share drives etc. Some ideas come to my mind:It's not surprising! This is only a PC, why shouldn't be there any bug? These companies are optimalize costs (as each) therefore they use Linux or BSD as a base. That is the reason why there are alternative firmwares (SamyGO, OpenLGTV) and I think they will be as wide spread as alternative router ... [Read More]

 Everyone hardens and secures their server environment, protecting it from the outer and inner attackers as well, but the only thing they usually do not plan is the end-user. In my opinion the end-user needs nearly as much protection from the outer side (or from the harms of Internet if you like that much more) as the complete infrastructure, as they are a part of it. Users surf the Internet, do their job and visit their electronic bank using the same physical machine and same operating system, with their applications and browsers unseparated from any untrusted information, so this could ... [Read More]