Here’s a scenario… you get a notice, you see it on social media or on the news, something else about changing your password. You put it off because it’s not a matter of national security in your life. A few weeks later, something worse happens — a major breach of a financial institution happens, maybe your bank or credit card, or a social network gets breached. Yet again, you don’t get a phone call or you know it doesn’t affect you so you just leave your password the same. You don’t have time to go change and memorize another password. It’s just too much. Then you hear of the worst vulnerability affecting the known Internet. It’s called Heartbleed, aka CVE-2014-0160. That’s a snappy name, you think to yourself. Not a big deal. Now it’s the “most dangerous security flaw on the web,” according to The Verge.
This scenario happens all…The…TIME. Major breach, no one cares. No one really cares until someone in Information Security makes you care. When all of the yelling and screaming at Tier 1 support is over because there’s really no one to blame except some “magic man in a cloud” that pushed a button (or forgot to), no layman really knows what happens next. This time, we have an even greater nightmare. Absolute panic should be occurring online right now, but no one cares. It’s not important because it’s just digital life that depends on it.
Panic, you say? Yes, PANIC for any decent Internet Service provider. The panic is based on the fact that just because you change your password, or get notice to change your password, that it doesn’t mean that the breach is fixed. In this particular incident with Heartbleed, it was only yesterday that SOPHOS updated UTM and SAV for vShield. COMODO, an SSL provider, is just now sending out word. It was two days ago that the media really took wind of it. Looking at this like a virus spreading, we’re still just over 72 hours from Zero Hour on April 7th (considering when it was announced and announcing it being the moment that people both use the vulnerability for good and to respond to the call-to-action). But that news media article or spot only made it worse. Panic. That’s not all even still. Heartbleed was affecting the Internet since December 2011. Even more panic. This makes my head hurt, you think to yourself.
The exact problem here is that while the vulnerability was exposed, only a handful of services and sites had time to respond to the threat. In the time that it takes to respond to a threat such as Heartbleed, a lot of things need to happen. SSL certificates, private keys, internal passwords and security procedures, not to mention the OpenSSL module and Apache, all of which have to be updated. But you got the news yesterday. The amazing power of the Internet told you that there was a problem and you went and updated your password because you were sick and tired of that next Target security breach they were talking about last Christmas. And now, NOW you need to go change your password all over again even after you spent two hours yesterday making sure that everything was “safe,” or so you thought. You give up — and you likely should — because a typed password that a human can use is no longer truly safe.
Passwords hurt my brain, you think. Well, that’s fine. Because this breach is bigger than just your password. It’s your phone, your tablet, your printer, your laptop, your wireless router, your Smart TV, and that Starbucks hotspot. It’s also the fact that when you use OAUTH to sign into Pinterest from your Twitter ID or save your favorite Epicurious recipe by logging into your Facebook account that the session can be hijacked. But you like to stay logged in to your favorite sites for hours on end even though you only stay online for about 20 minutes — tops. It’s just so darn handy to not have to log out. Well, that’s what it’s going to take. You need to log out and wait. BUT I CAN’T BE BOTHERED TO DO THAT… and the cycle continues.
Perhaps it wasn’t clear enough. Nearly everything that you use a password on is affected. Unless it doesn’t connect to the Internet, like your garage door opener from 1981, chances are it’s affected. But we can’t have our customer base freak out! Yep, I’ve heard that one too. So fix OpenSSL and reset their passwords for them. But wait, that’s not a good idea because all of those GMail addresses have the same password or XYZ provider is about 8 days behind Zero Hour and they’re just going to login to a unsecured secure server. Well, we can’t all rely on the media to tell us when to do things. Or maybe that other site I like… NO, because they’re affected too.
So how do you handle Heartbleed if you’re not some Information Security guru? You log out and you wait until EVERY SITE you use has something up about actually changing your password. Your password has been vulnerable for over two years now. That’s not some wise indication to not care and login anyway and people in Information Security would seriously frown on you doing that. Use a sticky note to remind you to go check the support section of your favorite websites to see what they’re saying. Log out. Give the Internet a break for a day or two. Heartbleed and all of the other nasty things that bother the Internet will still be here when you get back. Until then, here’s a list Mashable has put together of sites that are affected.
Everything you need to know about SEO and Web DesignSeptember 4, 2017 - 9:13 pm
Hiring the Right SEO CompanyMay 4, 2017 - 9:46 am
Heartbleed and the Information Security Nightmare
Rant, Security, TechnologyHere’s a scenario… you get a notice, you see it on social media or on the news, something else about changing your password. You put it off because it’s not a matter of national security in your life. A few weeks later, something worse happens — a major breach of a financial institution happens, maybe your bank or credit card, or a social network gets breached. Yet again, you don’t get a phone call or you know it doesn’t affect you so you just leave your password the same. You don’t have time to go change and memorize another password. It’s just too much. Then you hear of the worst vulnerability affecting the known Internet. It’s called Heartbleed, aka CVE-2014-0160. That’s a snappy name, you think to yourself. Not a big deal. Now it’s the “most dangerous security flaw on the web,” according to The Verge.
This scenario happens all…The…TIME. Major breach, no one cares. No one really cares until someone in Information Security makes you care. When all of the yelling and screaming at Tier 1 support is over because there’s really no one to blame except some “magic man in a cloud” that pushed a button (or forgot to), no layman really knows what happens next. This time, we have an even greater nightmare. Absolute panic should be occurring online right now, but no one cares. It’s not important because it’s just digital life that depends on it.
Panic, you say? Yes, PANIC for any decent Internet Service provider. The panic is based on the fact that just because you change your password, or get notice to change your password, that it doesn’t mean that the breach is fixed. In this particular incident with Heartbleed, it was only yesterday that SOPHOS updated UTM and SAV for vShield. COMODO, an SSL provider, is just now sending out word. It was two days ago that the media really took wind of it. Looking at this like a virus spreading, we’re still just over 72 hours from Zero Hour on April 7th (considering when it was announced and announcing it being the moment that people both use the vulnerability for good and to respond to the call-to-action). But that news media article or spot only made it worse. Panic. That’s not all even still. Heartbleed was affecting the Internet since December 2011. Even more panic. This makes my head hurt, you think to yourself.
The exact problem here is that while the vulnerability was exposed, only a handful of services and sites had time to respond to the threat. In the time that it takes to respond to a threat such as Heartbleed, a lot of things need to happen. SSL certificates, private keys, internal passwords and security procedures, not to mention the OpenSSL module and Apache, all of which have to be updated. But you got the news yesterday. The amazing power of the Internet told you that there was a problem and you went and updated your password because you were sick and tired of that next Target security breach they were talking about last Christmas. And now, NOW you need to go change your password all over again even after you spent two hours yesterday making sure that everything was “safe,” or so you thought. You give up — and you likely should — because a typed password that a human can use is no longer truly safe.
Passwords hurt my brain, you think. Well, that’s fine. Because this breach is bigger than just your password. It’s your phone, your tablet, your printer, your laptop, your wireless router, your Smart TV, and that Starbucks hotspot. It’s also the fact that when you use OAUTH to sign into Pinterest from your Twitter ID or save your favorite Epicurious recipe by logging into your Facebook account that the session can be hijacked. But you like to stay logged in to your favorite sites for hours on end even though you only stay online for about 20 minutes — tops. It’s just so darn handy to not have to log out. Well, that’s what it’s going to take. You need to log out and wait. BUT I CAN’T BE BOTHERED TO DO THAT… and the cycle continues.
Perhaps it wasn’t clear enough. Nearly everything that you use a password on is affected. Unless it doesn’t connect to the Internet, like your garage door opener from 1981, chances are it’s affected. But we can’t have our customer base freak out! Yep, I’ve heard that one too. So fix OpenSSL and reset their passwords for them. But wait, that’s not a good idea because all of those GMail addresses have the same password or XYZ provider is about 8 days behind Zero Hour and they’re just going to login to a unsecured secure server. Well, we can’t all rely on the media to tell us when to do things. Or maybe that other site I like… NO, because they’re affected too.
So how do you handle Heartbleed if you’re not some Information Security guru? You log out and you wait until EVERY SITE you use has something up about actually changing your password. Your password has been vulnerable for over two years now. That’s not some wise indication to not care and login anyway and people in Information Security would seriously frown on you doing that. Use a sticky note to remind you to go check the support section of your favorite websites to see what they’re saying. Log out. Give the Internet a break for a day or two. Heartbleed and all of the other nasty things that bother the Internet will still be here when you get back. Until then, here’s a list Mashable has put together of sites that are affected.
Sony To Reform PC And TV Business, VAIO To Cease Design
Off-Topic, Sony, TechnologySony announced today that it will be selling its PC business under the VAIO brand in order to focus on mobile devices such as smartphones and tablets.
It was reported recently that Sony might be looking at revising its product strategy for the VAIO PC business after the company denied having talks with Lenovo for a possible acquisition. Now, the Japanese electronics company has published a press release confirming that it will be selling its PC business to Japan Industrial Partners Inc., as the company does not expect the division to become profitable by the end of the 2013 fiscal year in March. Employees associated with the PC business will be inducted by JIP and current customers will be given service for the promised lifetime of their products.
Sony’s plan should not come as a surprise as the worldwide PC shipments have continued to decline throughout 2013 as more customers are buying mobile devices than traditional computers. With the exception of Lenovo, all PC makers have seen negative growth in desktop and laptop sales. Sony’s restructure plan which began in 2011 also included its mobile division which managed to break even, after the company dedicated its resources exclusively to smartphones and tablets.
Although the TV division has continued to struggle along with VAIO, Sony would continue to assess product strategies to make it profitable, which includes laying off 5000 employees worldwide and up to 70 billion yen in expenses, by the end of the 2014 fiscal year.
Original article release via Neowin | Image via Wikipedia
How does this affect your view of Sony VAIO? Will you keep yours?
Final Fantasy 25th Anniversary Sony Entertainment Network Sale
Downloads, Gaming, Off-Topic, PlayStation Network, Sony, Sony Entertainment NetworkTwenty-five years ago, our company launched a game called Final Fantasy. It was the result of a lot of hard work and dedication. It was also the start of a franchise that would go on to capture the hearts of millions of players around the world.
As we celebrate Final Fantasy’s 25th anniversary, we look back on a series that contains 14 installments, numerous spin-off games, and all sorts of merchandise. We are always impressed by the love our fans show for this franchise.
To celebrate this amazing milestone in the history of Final Fantasy, we’re putting a number of Final Fantasy titles on sale on PlayStation Network, starting when PSN updates tomorrow. For two weeks, the following titles will be on sale in PlayStation Store for 50% off.
We hope you enjoy these classic titles — the memories they evoke, and the new memories they will create.
Via: Posted by Shinji Hashimoto // Senior Executive Managing Officer, Square Enix // Sony PlayStation Blog
SONY CES Press Conference 2013 Coverage Overview #SONYCES
CES, Events, Marketing, Press Release, Social Media, Sony, TechnologySony Xperia Z and ZL. Xperia Z has full HD 5inch screen & is powered by Mobile BRAVIA Engine 2 for brilliant colors, contrasts, sharpness. Xperia Z has a 13 MP camera w/ Exmor RS, world’s 1st image sensor w/ HDR video for smartphones. Sony COO Phil Molyneux said “It has the sharpest & brightest full HD screen that Sony has ever brought to a smartphone.”
Mr. Molyneux stated, “You can use your Xperia Z anywhere whether it’s blogging in a bathtub or downloading in a downpour.”
Sony presented the Sony One Touch System – SRS-BTV5, a BlueTooth and wireless speaker system.
Displaying later the Sony Bravia 84″ 4k TV with Triluminos Display and the Sony Generation X Headphones. New 4K TVs will feature magnetic fluid speakers for awesome sound as well as 4K X Reality Pro upscaling technology. Sony will introduce the world’s 1st to-the-home service will allow owners of our 4K TVs to download native 4K movies created by Sony Pictures and others. Later this summer, Sony Pictures Home Entertainment w/ Sony Pictures Colorworks is working to release a 4K lineup of Blu-rays of existing films this spring.
The brand new Cyber-shot WX80 is Wi-Fi enabled. Send pics to your phone to be shared on your social networks!
“Be Moved” was a central theme throughout the press conference and many loved the visuals.
Stay tuned. We’ll post more information as it comes available!
ECA Chapters Holds Local Food Drive Supporting Local Food Banks For Holidays
ECA, Gaming, Local News, Marketing, Press ReleaseWe have two pieces of news to release on the ECA food drive initiative. First up is from Josh Hughes, Zookey of Team KAIZEN, regarding their local ECA chapter’s support in Great Falls, Montana. This particular chapter of the ECA is focused on representing themselves as an Indie Game Developer Chapter.
Second, the official press release from ECA Vice President of Marketing, Heather Ellertson, is as follows:
We hope that you’ll support your local food bank along with everyone else during “Gamers for Giving”.
PlayStation Mobile Launches Today
Gaming, PlayStation Network, Press Release, Sony, TechnologyThe PlayStation Mobile platform launches today. Here’s the official scoop from Sony:
As you may remember from our previous post about PlayStation Mobile, PlayStation’s brand new mobile games platform for select mobile devices has been in the works, and you can try it out yourselves starting today! PlayStation Mobile allows you to get PlayStation-like experiences on a variety of platforms such as PS Vita and PlayStation Certified devices such as select Android phones and a variety of tablets. Downloading content, including games, on PlayStation Mobile is easy for gamers with a SEN account. Simply use your PSN Wallet to purchase PlayStation Mobile content.
While we’ll be constantly expanding our content offerings for the platform, we’re excited for you to check out our initial line-up of launch titles, including Loot The Land, Beats Slider, and Super Crate Box. Let us know which titles are your favorites.
For PS Vita users, as long as you have Internet access, you can use your PSN Wallet to download the full range of PlayStation Mobile content. Simply visit the PlayStation Mobile section within the PlayStation Store on PS Vita and take your pick from the list of available titles. If you purchased PlayStation Mobile content on another PlayStation Certified device, go to [Options] > [Download List] to select the title and download it directly to your PS Vita. With PlayStation Mobile, PS Vita owners are getting yet another way to access PlayStation content on the go!
For owners of select PlayStation Certified Sony smartphones and tablets powered by Android, you can find instructions to access PlayStation Mobile content here.
Here at PlayStation, we’re always looking for ways to improve your PlayStation gaming experiences, and we can’t wait for you to get up and running on PlayStation Mobile so we can hear your feedback. Be sure to check out PlayStation Mobile starting today, and let us know what you think in the comments and in the official PlayStation community forums.
Sony PlayStation Vita Support for PSOne Classics is Live
Amazon, Gaming, Marketing, Off-Topic, Reviews, Sony, TechnologyThe PlayStation Vita, the successor to the PlayStation Portable, has released firmware version 1.80 which allows PSOne Classics to be played on the device. The list from SCEA shows the following games to be playable once the PlayStation Network Store updates:
So we’ve been waiting on this for 6 months now. The really unfortunate news is that despite the compatibility of this short list of games for North American (SCEA) players, the list of games for European players, SCEE, is exponentially longer. Here it is and what you can expect, at least, in the future:
The lineup for SCEE is quite nice and includes a majority of Square Enix Limited Final Fantasy games, including Final Fantasy VII. We’ve tested it out personally on games we’ve copied on to our PS3 before the PlayStation Store update and see the ability via Content Manager to copy many games on the list as well as games not on the list. We’ll keep you posted via Twitter @TurkReno.
Personal thanks goes out to @Eramo88 for letting us know as soon as the update was live.
Pinterest iOS Update 2.0 – Now iPad Capable
Apple, iOS, Marketing, Pinterest, Reviews, Social Media, TechnologyPinterest, a very interesting way to share images and small thoughts with those images, today released an iPad capable app. Prior to this, only the iPhone version upscaled was viewable to iPad users. The improvement, although terribly overdue, is a tremendous step in the right direction. We logged in and took some screenshots of the new interface.
The crispness of the retina display for the newest version of the iPad really stands out. Worth taking a look on older iPads as well.
If you’re looking for the link to the iTunes store to update your iPad, go here. Enjoy and happy Pinning!
Hell’s Kitchen Drinking Game Rules
Events, Marketing, Off-TopicAs fans of the show, we wrote some drinking game rules for Hell’s Kitchen. Enjoy and drink responsibly!
1. Original Rule: Any time someone says they’re getting “thrown under the bus”, Person who is visiting has to drink.
2. Revised Rule for first rule: Any time someone makes a *traffic related remark* (“just got sideswiped, you’re trying to t-bone me, don’t run me over”) regarding their treatment in Hell’s Kitchen, Everyone has to drink.
3. Each time Gordon Ramsey says “dig in”, Everyone has to drink.
4. Each time someone says “I’m not here to make friends”, Person who is visiting has to drink.
5. Each time the canned-noise that resembles a buzz-saw happens, Everyone has to take at least a sip.
6. Any time food is raw during dinner service, Host/Person Supplying Seating & TV has to drink.
7. Any time food is over-cooked during dinner service, Person who is visiting has to drink.
8. Any time Gordon says the dish is well-done during dinner service, Everyone has to drink.
9. If there’s a risotto on the dinner menu, each time it is mentioned Host/Person Supplying Seating & TV has to drink.
10 If there’s anything on the dinner menu with “puree” in the title (Eggplant Puree, Sweet Potato Puree), Person who is visiting has to drink.
11. Every time there’s a cut to commercial before announcing who BOTH won AND/OR lost (different drinks for each) during competitions and eliminations, Everyone drinks.
12. Every time Gordon asks someone to take off their jacket but returns them to the line to eliminate (or not) someone, Everyone drinks.
13. If you blurt out who you think is going to get eliminated and you’re wrong, you drink twice.
14. If Gordon kicks anyone out of the kitchen during dinner service, Host/Person Supplying Seating & TV has to drink.
15. When Gordon says “Open Hell’s Kitchen”, Everyone drinks twice.
Amazon, Sony Falsely Advertising the PS Vita
Amazon, Gaming, Marketing, Off-Topic, PlayStation Network, Rant, Reviews, Sony, TechnologyThe PlayStation Vita
After watching the PlayStation UStream today and in much anticipation of the PlayStation Vita, we were very disappointed to find out that the PS Vita being sold as a console capable of playing PSOne Classics won’t play PSOne Classics on day one. We covered this as a potential leak, but now it’s much more. Now you may disagree with our position, but we’ve got plenty of proof that what the sales ad Amazon displays for the PlayStation Vita is false advertising:
As I understand it, and I’ve consulted legal aid about this, the Vita should be able to play PSOne Classics as advertised. And as you can correctly assume, we’ve invested quite a bit of money into purchasing Final Fantasy and other Squaresoft / Square Enix PSOne Classics to play. All of them except for Legend of Mana and Chrono Cross.
We decided that this wasn’t fair. And it isn’t fair. You should complain. We did. To the FTC. What did we say to the FTC? Glad you asked.
Want an FTC Complaint Number to go look up our complaint? Sure. 35014256. Want to make your own FTC Complaint? Go ahead, make our day. And you should too because IT’S FALSE ADVERTISING. Need to see why? Here’s a link to the Los Angeles Department of Consumer Affairs website in which they state:
Sure. Get mad at us, call us “Microsoft Fanboys” (that was a really funny tweet, thanks), don’t alter the Amazon site to make our claim even more legitimate. It just sucks that we relied on a retailer and Sony to say one thing and then they promise it as a soon “eventuality”. Yeah. Eventually the Mayan calendar may be right too. Guess we’ll have to wait and see what Amazon and Sony does because they have TWO DAYS to fix this before it turns into a legitimate legal claim.