For those who might be interested in what really happened during the recent Target retail attack, where information about 40 million credit cards was stolen (including mine), here’s a really interesting article from Security Week:
In a nutshell, the attackers used a RAM scraper to pull credit card information that was stored “in the clear” within memory.
And yes, I was issued a new card because of this whole fiasco.
I’m working with Jonathan Quigg on a new talk, “Security Strategies With a SOLR and Rails.” We last spoke together at the GFIRST Cyber Security Conference in Atlanta, GA. This topic seems like a good follow-up to my “Rails and the Apache SOLR Search Engine’ talk from RubyNation 2012.
I’ll be speaking at the NovaRUG group on “Rails Security” on Thursday, September 22nd. Networking starts at 6:30 PM, with talks beginning at 7:00 PM. Be there! The other talks will be on reek (the static code analysis tool) and JRuby.
I will be speaking at the DCRUG on September 8, 2011 on the subject of “Rails Security.” The event begins at 7:00 PM.