nCircle.com >> 360 Security

« Skype: Culprit to Corporate | Main | SCADAGard SIG To Be Established »

Narrative Security

Normally, I really try to avoid reposting things from Slashdot here. I figure, if it's on Slashdot, this community has probably already seen it or doesn't want to. Occasionally, something seems like it could use a few additional comments. This article walks through a pen test, starting with physical security:

"Without having an "official" magnetic access card to duplicate, I pulled every card with a magnetic stripe from my wallet, including my bank ATM card, a credit card, and a shopping card from a major grocery store. To my surprise, the first swipe from the shopping card opened the door."

So it seems that this magnetic swipe system simply accepts *any* magnetic stripe? Or maybe there's something about this particular frequent shopper card that works with this particular system. In any case, it's a nice simple reminder why *two* factor authentication is still relevant.

As a side note, this sort of article reminds me of the narrative of a DDoS against grc.com from Steve Gibson back in 2001. Note not only the use of language, but also the use of color, font, size and indentation.

Posted by Tim Erlin on July 20, 2006 1:43 PM |

Search


About

This page contains a single entry from the blog posted on July 20, 2006 1:43 PM.

The previous post in this blog was Skype: Culprit to Corporate.

The next post in this blog is SCADAGard SIG To Be Established.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]