DSSI

01/10/2024

We are not hiring.

This is to inform the public that DSSI is not connected with Ruby QTan and that this user's post that tagged DSSI to allegedly misrepresent, is not authorized by the company, its directors, partners and suppliers.

13/05/2017

If you have access to your server or want to advise your sys admin to disable SMB from your Windows Server to help avoid getting attacked by or ransomware, you may try the following using your registry editor:

Run Regex (be careful not to touch anything else in the windows registry as you could potentially brick your server)

For SMB v1 apply this fix:

Go to:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\

Look for: SMB1

Set the following values:

To disable:
REG_DWORD: 0 = Disabled

To enable:
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

For SMB v2:

Go to:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters

Look for: SMB2

To disable:
REG_DWORD: 0 = Disabled

To enable:
REG_DWORD: 1 = Enabled
Default: 1 = Enabled

--------

13/05/2017

If you are using Windows for your servers, you are strongly urged to check with your system administrator or vendor if your server(s) are already patched for security (particularly the Windows' SMB Server vulnerability), or if measures have been in placed to safeguard your server from attacks. Don't forget to backup in case disaster strikes.

Patch information here:
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx

Other information here: http://www.bbc.com/news/technology-39901382

10/01/2017

Yahoo to be renamed 'Altaba' after selling its Internet business to Verizon Communications. Based from a regulatory filing made to sec.gov (https://www.sec.gov/Archives/edgar/data/1011006/000119312517005897/d316156d8k.htm)

Excerpt from the filing:

"The Board also determined that, following the Closing, it intends to cause the Company’s name to be changed to Altaba Inc."

Other sources:

http://thenextweb.com/insider/2017/01/10/yahoo-renamed-altaba-ceo-marissa-mayer-resigns/

It’s the end of an era: Yahoo as we know it is no more. While we already knew most of the venerable company was being sold to Verizon – a $4.8 billion purchase – the remainder of company today announced that it’s renaming itself to ‘Altaba,’ according to TechCrunch. “The most awesome stage” Last yea...

14/12/2016

Although Facebook team has already acknowledged the issue and fixes are on going, do take caution when using social network chats, avoid sharing bank details, user accounts, private photos and files and passwords.

If you really need to send something private, send it via e-mail. It's less convenient but far more secure.

An estimated 1.8-billion active monthly users trust Facebook to keep their accounts, user details and communications secure. On the one hand, the social network is based on sharing: users post some 350-million photos daily and nearly 300-thousand statuses per minute. On the other hand, there is Face...

04/07/2016

It's common knowledge in the IT industry that tech giant Google is in the business of collecting plethora of data across the web. It should be no surprise that it also collects data about you.

So what Google knows so far?

If you are using Gmail or an Android device, chances are you have a Google account. This account enables you to use Google services like, YouTube, Google Play and Maps, and activate your Android devices. At the same time, your account enables Google to "optimize" your experience such as language, timezone, and territory-related search results, by recording information such as your IP address, location, search history, or even videos watched. The data collected also includes activities in your Android device/s such as when you used your Viber, Facebook, Instagram or other Android mobile apps to name a few. The photo you see here is a sample snap of what was collected so far.

The good news to the privacy conscious is that Google is quite transparent about what data it collects from you, and has recently launched its new tool called My Activity which is found under My Account in your Google dashboard. From there, you can view or delete the data collected from you.

Although some users might feel shocked about having to see their activities being recorded, to some, this is a good sign about Google's transparency and a potential tool to check if your account (or device) is being used by someone else especially that tech-related crimes are nowadays frequent in the news.

Check yours out:

You can start here:
https://myaccount.google.com/

or go directly to:
https://history.google.com/

02/07/2016

Nowadays it is staple for website owners and IT teams to setup a Content Management System (CMS) to power and operate websites.

Unfortunately, very few IT teams are keen on hardening the systems they are installing for the clients, and in fact, this is also the very reason why some websites are being defaced, or even compromised - such as the recent data leakage fiasco that happened in the electorate database of the Philippines.

The image you see here is a screen shot found from the public report from Securi, and it shows which CMS are infection prone. Is your CMS on the list?

As of Q1 of 2016, Sucuri has a Remediation group comprised of two distinct teams respectively called as the Incident Response Team (IRT) and Malware Research Team (MRT). In the process of remediation, the group was able to gather data from around 11,000 websites showing which CMS is prone or has been subjected to attacks. Note that this doesn't account for market share or install bases of the CMS brands in focus.

According to SUCURI:

"The three CMS platforms most being affected are WordPress, Joomla! and Magento. This does not imply these platforms are more or less secure than others. In most instances, the compromises analyzed had little, if anything, to do with the core of the CMS application itself, but more with improper deployment, configuration, and overall maintenance by the webmasters and their hosts. "

Read more on their full report:
https://sucuri.net/website-security/Reports/Sucuri-Website-Hacked-Report-2016Q1.pdf

source:
https://blog.sucuri.net/2016/05/sucuri-hacked-report-2016q1.html

25/06/2016

Be careful with these high-tech card skimmers that can steal your ATM or Credit Card information.

The lengths at what hackers would take are at times unthinkable.

https://www.youtube.com/watch?v=ll4f0Wim4pM

UPDATE: I have since notified the Vienna Police Department regarding this discovery as at the time of the incident I did not have access to an international ...

16/06/2016

If you're looking at a career in software development, here's a table of the top 10 popular programming languages across the net which have been computed, organized and indexed by TIOBE. Note that the list is not about the best of the crop, this is an indicator of what programming languages are commonly seen from various sources across the web to date, like search engines, ad servers and the likes. In many ways though, this could also translate if whether what you know or what were taught to you in school are still current.

Is yours on the list?

If you want to see the top 50, click here for source:
http://www.tiobe.com/tiobe_index

10/06/2016

What you think is fun and *free*... you actually pay with your *identity and privacy*.

Occasionally, you will find your friends using fun or funny (admittedly) tools like Meme Generators, Horoscope, Billboard makers then you are enticed to click on it and make your own because it's free. BUT watch out! If you look closely (like these photos) these apps are not free because you pay with your identity and privacy. You could "edit" the information you want to provide, but you can't uncheck some things like your IP address, location, photo, gender, age, and name - which is enough information that identity thieves could use. So, are you sure you want to trade your personal information for the sake fun?

Keep safe.

03/06/2016

Because the popularity of Windows, people both the tech-savvy and the not, are used to the usual folders and Windows drives such as C:\ or C:\Program Files, C:\Windows\System32 etc...

If you're new to Linux and has come to like it because of its open source nature and licensing, and its inherent nature of keeping files secure to a point where some would speculate that Linux is resistant to viruses (in many ways yes it is resistant, but only if users are not careless), then understanding the Linux folder and file structure should interest you.


all credits to source:
http://fossbytes.com/linux-lexicon-linux-directory-structure/

The Linux Directory Structure is quite different as compared to others. Here is an overview of it along with the details of some of the common top level directories that you must be aware of