The HDFS Juggernaut

There's been much focus on MongoDB, Elastic and Redis in terms of data exposure on the Internet due to their general popularity in the developer community. »

Understanding Security by Country: SSL

With Shodan it's easy to get an overview of the security for a country. Real-world borders don't necessarily translate to the Internet but it can still »

Tracking Hacked Websites

I wanted to revisit the results of a few posts last year on how to track website defacements and see how things have changed since then. »

Memory As A Service

I've written and presented on the topic of insecure databases for nearly 2 years now. The example I use the most to demonstrate the problem is »

It's Still the Data, Stupid!

In light of the recent incident of MacKeeper exposing 13 million accounts through a public, unauthenticated MongoDB instances I wanted to quickly revisit my earlier blog »