Typosquatting and Doppelganger domains

A whitepaper released earlier this week by GodaiGroup’s Garrett Gee & Peter Kim investigates issues around domain name similarities and typos. I do recommend the read as the paper contains noteworthy information but I believe that most InfoSec professionals will find the facts and takeaways rather boring. It has been topic of discussions and presentations at security events […]

Certified, licensed or signed?

While having my coffee this morning I came across this short posting on the Sophos blog titled “License to code”. After i had some good conversations at the last ISSA UK chapter meeting about code quality from a security durability point of view and what implications this (should) have on liability of the software vendor […]