Unfortunately, 800 EUR per year is too expensive for private use…

A Deductive Proof about RIM and Government Monitoring (Forbes): http://bit.ly/cWnNPw

Different point of view between governments that:
- who can’t wiretap Blackberry services and force RIM to do so (India, UAE,Saudi)
- who don’t allow selling Blackberry until secret services (FSB) made an agreement for tapping (Russia)
- who don’t trust RIM for government use because of potential spying risk on RIM networks (France and Germany)

That’s because RIM is not only a phone manufacturer but also a Service Provider with a world-wide internet overlay that’s the RIM network.

Read VoIP SA blog post on US tapping of RIM messaging:
http://voipsa.org/blog/2010/08/04/blackberries-and-lawful-intercept/

That’s because it’s a service provider and not only a manufacturer.

Consider me available to collect and invest time and (some) money to test the hardware setup, test and documentation, also collecting the rainbow tables required.

emgent
BackTrack Linux Coordinator

I am thinking about a site collecting snake-oil products/advertisements. Something like http://datalossdb.org/ – One may do a checklist out of Matt Curtin’s paper ;) In the meanwhile I send suspicious vendors/products to Bruce Schneier and hope he is going to rant about them in his blog ;)

Regards,

Marc

IMHO it would really be required to use a strong full disclosure oriented approach with a website collecting analysis and evidence with objective evaluation points related to snake-oil spotting.

Something that have to be objective along with attached proof (screenshots, documents, etc) about a specific analysis.

Also because a single persons doing this would not be really effective, probably a little community based platform with objective criteria to handle snake oil spotting would be very fun :-)

Fabio

Nice article that summarizes the problem very good.

But how would you expect to proceed with a vendor that is selling snake oil? Would you expect to make an analysis public to warn others from the false promises?

Regards,

Marc

http://groups.google.com/group/alt.security.scramdisk/browse_thread/thread/67db4bf8c34a06d3/c724e69a44eb94b0%3F

http://groups.google.com/group/alt.security.scramdisk/browse_thread/thread/1d86bc59bff869cb/cbf562f2f1b04c18%3Fq=hafner%26amp;lnk=ol%26amp;

.. to say the least.

It is little known that his anonymising service ‘surfsolo’ was actually provided by another outfit at http://www.privacy.li . According to there website they dumped Wilfried Hafner last year around August/September for ‘unethical behaviour’, check it out here:

http://privacy.li/news.html

I wonder why…

Don

http://news.techworld.com/mobile-wireless/7425/devastating-mobile-attack-under-spotlight/
it´s another Fake from Hafner:
German Security Specialist write http://www.marko-rogge.de/rexspyartikel.pdf

A quick google for “Carroll B Merriman” was instructive – an entirely context-free commentor with weird interjects on everything from California ‘go-go & sushi’ bars (where he posts about Zune?) to Lancashire computer repair & web design (well, Blackpool ain’t too far) and, most tellingly, about internet affiliate marketing. The Blackpool PC site hurt in the karma (poor goldfish, crap site) and, interestingly, appears to be strangely registered – to a non-UK resident individual (rather than a UK company). ‘David Pennington’ may well be connected to ‘Steve Pennington’ who has aaafleetwoodpcrepair.co.uk, who is connected to “tickets4u Ltd” – a UK registered company.

V dodgy, in my professional opinion – this grass is clearly plastic.

Please link back to us in your coverage!

if securstar is doing that kind of stuff, it will be really bad for them. But, do you know that securstar has a product that allow anonymous surfing over the web. So, thier Server for that anonymous product are located also at that Ip adress !

If i will be the hacker, i will upload the content of http://www.infosecurityguard.com not over my public IP adress ! I will redirect every up oder download over a lots of proxy’s.

So, when somebody gets a IP adress, with a link to a company, that is not the evidence, that the company is the “badboy”.

Even, the hacking of Mobile Phones is a very old issue, so what Notrax is telling us, is: “there is still dangerous things out there, even when you feel secure, you are not !

So, i think the content of that page are true, so when i pay 500 Euro’s or more for a Security Product and it can be hacked with a oldschool bypass trick….shame on that company !

Anyway, i trust no one ! Not Securstar, not that page, not other places.

Think, before you publish !

Greetz

Logan

Id doesn’t matter if you obtain just a device – can you read and disassemble the algorithms, code etc? I don’t know. Or it’s damn hard.

Besides, Russians are experiencing the same issues. E.g. when it was Soviet Union, it was ok. But then it split into several countries (CIS countries). And many military RND enterprises are located in Ukraine.

Now the Ukraine is friends with USA. So they just sold them a couple of Soviet-made military aircrafts with all documentation (e.g. drawings, schematics etc). So USA can make a full study of the technologies. That’s the real leakage!
And they also sell such technologies to China (spare parts, documents etc). Russia stopped selling military aircrafts to China recently – because chinese are buying 2 aircrafts and make 50 copies instead of buying 50 more, that’s what really amazing!