ernst

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Car theft exposes Hotels.com data

Car theft exposes Hotels.com dataSelf- Destruct To become a Reality?People should start putting self-destruct mechanisms in the laptop.Why is this data on a laptop???Are people that stupid. There is no need for data of that nature to be locally stored on a laptop.STOP THE STUPIDITY!!!!!!!!!!First, the VA loses info on...

Tags: Sales channel, Hotels.com, Ernst, credit card, E&Y

Discussion threads 2006-06-02

Additional Resources

6% of US households with income average or above own a timeshre

6% of US households with an annual income of $45,000 or above own a timeshare unit. According to Ernst & Young, sales of timeshares reached $10.6 bln in 2007, up from just $6 bln in 2003. by AM

Tags: Income, Household, Operational Accounting, Sales Strategy, Finance, Sales, AM

Blog posts 2008-08-23

6% of US households with income average or above own a timeshare

6% of US households with an annual income of $45,000 or above own a timeshare unit. According to Ernst & Young, sales of timeshares reached $10.6 bln in 2007, up from just $6 bln in 2003. by AM

Tags: Income, Household, Operational Accounting, Sales Strategy, Finance, Sales, AM

Blog posts 2008-08-23

Black Hat Las Vegas Day 2

Again, sorry for the late updates.  Vegas is the kind of place that demands a lot of a person.  Too many parties make it difficult to find time to blog on the conference.  Pictures of the even are a bit sparse, due to consistently forgetting to bring my camera, but...

Tags: black hat, microsoft corp., applet, image, vegas, nathan mcfeters

Blog posts 2008-08-09

Responding to the DNS vulnerability and attacks

The DNS vulnerability, which has completely dominated the news in the security world the last two weeks, has been a concern for so many.  On the front of good news and getting things protected, the IBM ISS has team has published some great information. The Frequency X...

Tags: DNS, Vulnerability, DNS Server, Server, Network Address Translation, IBM Corp., Attack, Domain Names, Networking, Security, Internet, Nathan McFeters

Blog posts 2008-07-28

2008 Pwnie Award nominees announced

Well, after getting 134 nominations, and spending countless hours pulling out nominees, the judges for the 2008 Pwnie Awards have announced the final nominees to be voted on.  From the site: The final list of nominees for the nine Pwnie Award categories is ...

Tags: Nominee, Vulnerability, XSS, Attack, Flaw, Dan, XSS Flaw, Lifelock, Security, Nathan McFeters

Blog posts 2008-07-21

90% of all statistics can be made to say anything... 50% of the time, aka my thoughts on the Verizon report

** Update 06/23/2008: I realize I didn't do a very good job of talking about what we're reviewing here.  This is in response to the statistics gathered by Verizon related to Forensic Analysis of Data Breaches over a four year span.  First off, let me...

Tags: Business Partner, Vulnerability, Verizon Communications Inc., Attack, Data Breach, Security, Nathan McFeters

Blog posts 2008-06-22

Black Hat '08 preview webcast on its way

Ladies and gents, For those who hadn't heard, I will be presenting at Black Hat Vegas '08 this year with Rob Carter, John Heasman, and Billy Rios.  Our presentation is called "The Internet is Broken: Beyond document.cookie - Extreme Client Side Attacks", which may sound like a...

Tags: Black Hat, Webcast, Nathan McFeters

Blog posts 2008-06-15

Hacking SCADA for terrorism and destruction

Hacking SCADA for terrorism and destructionSCADA vulnerabilityAs an Engineer who has spent the past 20 years working on SCADA systems for water and wastewater plants, I have some comments on this article. And yes we are a user of CitectSCADA First, where I work, we NEVER connect our...

Tags: Enterprise software, NETWORKING, hacking, terrorism, SCADA, network

Discussion threads 2008-06-12

Welcome (back) Ryan Naraine; Zero Day's line-up revamped

You may have noticed a familiar byline over at our Zero Day security blog--Ryan Naraine. His addition completes a revamped line-up for our security blog. Ryan is now an evangelist for Kaspersky Lab, a security vendor. He joins Nate McFeters and Dancho Danchev, two real-world security researchers...

Tags: Security Blog, Ryan, Nate McFeters, Dancho Danchev, Dancho, Nathan, Security, Larry Dignan

Blog posts 2008-05-19

Apple and AT&T providing free Wi-Fi access to iPhone users and oops... to everyone else as well!

You have to love security through obscurity... A friend of mine on a private mailing list passed me a link to a story on macrumors.com, which was quite interesting.  Apparently, Apple and AT&T has decided to provide free wireless access to iPhone users at places like Starbucks. ...

Tags: Apple iPhone, Wi-Fi Access, AT&T Corp., Apple Inc., Starbucks Corp., User Agent, MacRumors, Wireless LANs, Wi-Fi, Wireless, Nathan McFeters

Blog posts 2008-05-01

Apple earnings cheat sheet: It's all about the Mac units

Apple reports its fiscal second quarter results Wednesday and the most important item driving the quarter will be Mac sales. All eyes will be on Mac units. Apple's Mac--despite a lot of focus on the iPhone--will make or break the quarter. Chances are pretty good that the...

Tags: Apple Macintosh, Unit, Quarter, Apple Inc., Earnings, Chances, Wall Street, Sales Strategy, Desktops, Sales Force Management, Sales, Hardware, Larry Dignan

Blog posts 2008-04-23

Targeted spear phishing attacks

A colleague of mine, Dave Wong, from Ernst & Young's Advanced Security Center in New York, pointed me to a really interesting article on targeted spear phishing attacks by John Markoff of the New York Times.  Phishing has been really interesting to me lately, as I've seen a wave of discussions,...

Tags: E-mail, Attack, Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Spam And Phishing, Nathan McFeters

Blog posts 2008-04-16

Ready for a CyberWalk?

Even with recent improvements in virtual reality technology, it's still almost impossible to physically walk through virtual environments. Now, European researchers have started a project named CyberWalk and they'll demonstrate next week their omni-directional treadmill, named CyberCarpet. According to ICT Results, the researchers 'had to address five key issues: providing...

Tags: Treadmill, Environment, CyberWalk, CyberCarpet, Chain Element, Virtual Reality, Emerging Technologies, Roland Piquepaille

Blog posts 2008-04-11

Adobe patches 7 issues, including Pwn2Own contest flaw and DNS rebinding issues

Adobe published an advisory covering issues, including a fix for the Pwn2Own flaw that we previously discussed here.  Adobe's details are published here.  One of the issues that was patched was discovered by myself and fellow researcher (and co-worker at Ernst & Young's Advanced Security Center) Rob Carter, see the picture to the...

Tags: Adobe Systems Inc., DNS, Domain, Lookup, Microsoft Internet Explorer, Web Browser, Domain Name, Flaw, Rob, Flash, XmlHttp Request, Kicker, Domain Names, Web Browsers, Networking, Internet, Nathan McFeters

Blog posts 2008-04-09

ZapThink's Linthicum takes reins as CEO of data services provider StrikeIron

Service Oriented Architecture SOA consultant and author Dave Linthicum has taken over as CEO at data services provider StrikeIron, just six months after Linthicum sold his consulting firm to and became a managing partner of SOA analysis firm ZapThink. On April 2, Linthicum was identified as CEO...

Tags: Data Service, StrikeIron, ZapThink LLC, CEO, Service-Oriented Architecture (SOA), Web Services, Channel Management, Middleware, Enterprise Software, Software, Marketing, Dana Gardner

Blog posts 2008-04-02

Concerned over Apple iPhone's third-party development and deployment model? Yep.

In a much ballyhooed media event, Apple released the iPhone SDK at a press conference last week.  I've been watching the wire to see if other security researchers are as concerned about Apple's development and deployment model as I am.  They are. A good friend and colleague...

Tags: Apple iPhone, Application, Apple Inc., Blogging, Security, Internet, Nathan McFeters

Blog posts 2008-03-10

Router Backdoors: Hacked by Chinese Part 2?

Router Backdoors: Hacked by Chinese Part 2?Typo AlertCite, not Site.Typo Alert: "They site no cases of any backdoors in any current routers sold from China."Correction: "They cite no cases of any backdoors in any current routers sold from China."Sorry to be nitpicking about typos, but this is probably because bloggers...

Tags: Routers & switches, Network technology, NETWORKING, router, Chinese Part 2, Router Backdoors

Discussion threads 2008-03-06

Veotag demonstrates video value

The last six months has seen an explosion in the number of video startups looking to make their name. Most are in the consumer space with little idea of how to monetize. Veotag, which was founded in 2006, is different. I first came across the company...

Tags: Use Case, Video, Veotag, Veotag Platform, JoVE Site, Corporate Communications, Podcasts, Marketing, Internet, Dennis Howlett

Blog posts 2008-03-05

Airport security part 1: Bluetooth, switchblades and -- wireless X-rays?

Airport security is obviously a major concern in our country, and I've made some observations that I'd like to share from my recent travels. February and March has turned out to be an insane travelling road show for me. When March completes, I will have spoken at...

Tags: Battery, Airport Security, Bluetooth, Wi-Fi, Wireless, Security, Nathan McFeters

Blog posts 2008-02-29