Mike the Crypto Goat

As Mark Twain reputedly quipped, “The reports of my death are greatly exaggerated”; I’ve been relatively inactive for the past six months concentrating on my personal life, which admittedly...

https://mikethegoat.wordpress.com/2016/09/01/im-not-dead-just-vacationing/

A lot has happened in the security industry in the past week or so. A devastating new vulnerability known as DROWN. As seems to be typical of recent style, this revolves around legacy support, na...

https://mikethegoat.wordpress.com/2016/03/02/weekly-security-wrap-up/

Greetings to all of my friends in cyberspace and my apologies for the extended hiatus. Unfortunately the free e-mail provider that I was using via a proxy has locked me out of the account, so the...

https://mikethegoat.wordpress.com/2016/02/16/new-e-mail-address/

During my hiatus I hadn’t updated the PGP key page to provide the key for my newly minted key. As you know, I configure gpg to have my keys valid for just one year to mitigate the dangers of ha...

https://mikethegoat.wordpress.com/2015/12/12/updated-pgp-key-page/

Unfortunately I’ve had an exceedingly busy time with family members seriously ill amongst a heap of other things that, individually would not rank highly but in concert have made for a very unh...

https://mikethegoat.wordpress.com/2015/12/12/this-goat-aint-dead-just-yet/

I figured I’d use this post to detail a matter that’s still under investigation by eBay regarding a seller located in either Singapore or China (supposedly China, but the package had a Singap...

https://mikethegoat.wordpress.com/2015/02/27/counterfeit-xiaomi-phone-an-intriguing-deception/

The recent fiasco involving Lenovo and what has come to be known as Superfish that amongst other things performs a MiTM attack on TLS encrypted HTTP traffic so that it can still insert advertisme...

https://mikethegoat.wordpress.com/2015/02/21/lenovo-superfish-not-the-first-time-vendors-have-preinstalled-malware/

Hi everyone! I’ve been away for quite a while. Work and family life have got the best of me, and I simply haven’t had much time to do anything remotely enjoyable – and well, authoring artic...

https://mikethegoat.wordpress.com/2015/01/22/canary-page-updated-probably-leaving-and-im-still-alive/

Almost five million gmail credentials were posted to a Russian language bitcoin forum a few days ago. Google’s official position is that these credentials were harvested externally and that gma...

https://mikethegoat.wordpress.com/2014/09/11/millions-of-google-credentials-leaked/

Matt Green recently blogged about the shortcomings of PGP for e-mail encryption. He makes some valid points, and without a doubt the trust management of PGP and its clone GNUPG is probably its Ac...

https://mikethegoat.wordpress.com/2014/08/29/matt-green-on-pgps-shortcomings/