Skip to content

Category Archives: IT Security

After Apple, Facebook Is the Next Target of Judicial Orders to Cooperate With Prosecutors

According to a statement published on the Brazilian Policia Federal’s website, a criminal court issued a “mandado de pris„o preventiva” (roughly, pre-emptive arrest order) against Facebook’s representative in Brazil, charged of not having cooperated in providing information about a Facebook page. The Brazilian Court, unlike the San Bernardino’s one in the Apple case, chose to […]

Apple, the FBI and the All Writ Act. Why the New York Court is Wrong

The US District Court for the Eastern District of New York Order that prevented the US Drug Enforcement Agency (DEA) to force Apple to provide support in bypassing the passcode security on an Apple device is another chapter of the “Should-we-allow-State-to-mess-with-our-intellectual-property” saga, starring Apple. Now that another Court ruled in a different way than the […]

Apple vs FBI: A Disturbing Option (for Apple)

Although PGP is widely spread and used since 25 years, after the first, early complaints nobody heard a single hiss from the FBI and its siblings about the† IOS-like “problems”. Maybe this is because of the open source license attached to PGP that allows whoever has enough brain, power and money to find ways to […]

No, Mr. Cook, A Flawed IOS Is Not Like A Sort Of Cancer

Apple’s CEO Tim Cook, talking about the request made by the law enforcement community to weakens IOS† stated that to comply to what the FBI is asking, would mean write a software that is sort of the equivalent of cancer. The statement is technically wrong , a slap in the face of the people who […]

An Answer to Apple’s Answer about the Iphone Hack FBI’s Request

Apple addressed in a letter to its customers the issues related to the FBI’s request to be provided with Iphone cracking tools. Here is a detailed analysis of Apple’s statement. Why is Apple objecting to the governmentís order? First, the government would have us write an entirely new operating system for their use … It […]

Iphone-as-a-weapon: back to 1991 (or: why you can’t trust commercial grade security)

The Iphone vs FBI quarrel about the “need” of Apple’s support to hack into an Iphone switches back the clock to 1991, when Phil Zimmermann gave PGP to the rest of the world, infringing the US veto on encryption export. So, this Apple vs FBI thing is actually nothing new since the position of the […]

Is The IPhone Criminals’ Weapon of Choice?

According to NBC, Apple has been ordered by a federal judge to support the FBI in decrypting the Iphone used by the people accused of having slaughtered 14 people in San Bernardino, California, last December, 2, 2015. The court order has been necessary since Apple refused to voluntarily provide such support. These are the bare […]

Italian Digital Signature Software Exposed to Man-in-the-middle Attack?

An independent researcher compiled a list of known Apple OSX-related vulnerabilities, including one that affects the Sparkle Updater Framework. I’ve just checked my Mac with this command find /Applications -name Sparkle.framework and found that DikeX, the old version of the digital-signature tool released by Infocert S.p.a., uses Sparkle. I don’t know if the software is […]

Why Him? (Marco Carrai, Matteo Renzi and Cybersecurity in Italy)

The appointment made by Italian PM Matteo Renzi of Marco Carrai as head of the Italian cybersecurity raised a storm of criticism and concern among the IT Security “professionals” that started complaining about his lack of competence, conflict of interest and so on. Many of the complaints (a few of them I’ve heard privately, from […]

Become an IT security guru in 10 steps

Become a legal IT security expert doesn’t need a lot of effort and, with the due care, you can build your legend in a short time-frame following ten easy steps: learn the lingo (security is a process, not a product; don’t use simply-to-guess password, is your company ISO-27000-1 compliant? and so on), give yourself an […]