Saturday, 15 October 2016

Possible overlay skimmer security feature?

There's been a lot of talk on various websites about overlay skimmers on POS devices. Talk about technological solutions etc..

You know, I reckon there's a low tech solution.

If the POS device manufacturers supply their own overlays, that are designed to physically probe points that must be altered to capture data such as PIN pad presses, line of sight with PIN pad presses, and/or access to a card's magstripe.

At randomised intervals within a maximum timeframe, a shopkeeper could fit this overlay over each PIN pad in the store in turn, and if the overlay didn't fit, then the PIN pad or whatever other component of the POS device would be known to be outside of physical spec.

Couple this with screening for Bluetooth and other common wireless comms methods using a cheap Android or other cheap wireless enabled device, and it should be possible to pick up when stuff's happening.

Wednesday, 26 August 2015

It's time to clear the space junk...

Over the years, I've collected a lot of computer paraphernalia - from actual computers to various parts of computers, associated cabling etc.

It's now gotten to the point where it's clear I'm not going to use a lot of it ever again, and so before I send it off for ewaste processing, I wanted to offer folks the chance to grab some of it.

Tuesday, 9 June 2015

Protecting against ransomware - is this possibly a different way of thinking about it in the SOHO space?

Recently my folks got an email from their ISP (Westnet) scaring them, thinking they'd been hacked (it turns out an old Westnet user database had been compromised, along with cleartext usernames and passwords... oopsies?).

Before I figured out what it was, I was thinking suspicious activity had been detected on their accounts and was worried about whether or not they'd backed up recently... then my thoughts turned to cryptoware and how it basically spreads out to whatever it touches and encrypts everything (had someone else hit by a bug recently - and I'm moving them and their formerly Windows XP computer to Lubuntu as they only need Windowsish looking email, web browsing and printing).

Anyway.. long setup aside, I was thinking, that perhaps the best way to deal with backups and cryptoware, was to have the system that needed to be backed up make itself available to an authorised backup storage provider by some restricted and secured means (over a LAN or encrypted link). That backup storage provider could be prodded by the client system to perform a pull, but the client would never have direct, unrestricted access to the backup server's archives.

Sunday, 7 September 2014

How to turn off showing the margins (aka whitespace) in Excel 2010 Page Layout mode

It was driving me nuts at work, this particular spreadsheet we have. On two tabs it was showing the margins, and on two other tabs, it wasn't. I didn't need to see the margins, and for the life of me I couldn't figure out how to make things consistent.. Then I figured it out when I hovered my mouse over the area!

Wednesday, 2 July 2014

Mobile devices aren't particularly secure...

Going through my news feed, I see an article in Engadget about how Boston, Massachusetts with the help of Cisco wants to install wireless charge stations that also report on environmental quality (such as noise and air pollution).

I think there's some gotchas here...

Saturday, 28 December 2013

Wednesday, 18 September 2013

Weird noise from my phone...

Awhile back, I noticed that every so often, my phone would make a weird sound and I couldn't figure out what it was.