Profile

Cover photo
Chester Wisniewski
Works at Sophos
Attended St. Clair High School
Lives in Vancouver, Canada
766 followers|48,043 views
AboutPostsPhotosVideos

Stream

Chester Wisniewski

Shared publicly  - 
 
The Xbox One seems to only be partially baked. Feels like a rush job.
1
1
Jeremy Jarrett's profile photo
Add a comment...
 
Unlike Microsoft, at least Mozilla were able to release an update with their announced vulnerabilities. Get over to getfirefox.com or check for updates if you are a Firefox surfer.
 
For the second day in a row critical web browser flaws have been made public. This time it was Mozilla's turn releasing Firefox 24.0 fixing 17 vulnerabilities, 7 of which are critical.
1
1
A. Ryan Robbins's profile photo
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Apply the Fix it now... Or do what I do and stop using IE. Friends don't let friends use Internet Explorer.
 
Attention Internet Explorer users (and administrators). There is a new zero-day attack in the wild, be sure to apply the Fix it or ensure EMET is protecting Internet Explorer for protection.
4
Michael Jostmeyer's profile photo
 
Yes, stop using it! 
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Even Mac and Linux users get a fix from Adobe. I want to get away from my keyboard, but these are too important.
 
It might be vacation season, but hackers don't stop just because it is hot. Get these fixes applied ASAP as they are nearly all critical!
4
1
Steven Atkinson's profile photo
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
It might be a small one, but an important one if you use Internet Explorer or Office for Mac.
 
Second Tuesday of the month? Check.
Fixes from Microsoft for Windows, IE and Office (Mac too!)? Check.
Critical flaws fixed in Adobe Flash Player? Check.

Get to it folks!
1
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
I suppose the attack exposure is low for iTunes, but this one does include a certificate validation fix for both OS X and Windows that could arguably be used to hijack the updater. Better load this one up soon folks.
 
The latest iTunes update is available fixing 41 vulnerabilities on Windows and one for OS X. This update includes fixes for bugs reported as far back as April 2012 and the famous Pinkie Pie vulnerability disclosed at last year's Google Pwnium 2 contest.
1
Add a comment...
Have him in circles
766 people

Chester Wisniewski

Shared publicly  - 
 
Is there a better way to celebrate Autumn than fresh sour dough and some spiced cider?
7
Tina Julian's profile photoT. Wisniewski's profile photoPatty Julian's profile photoJeff Pettorino's profile photo
6 comments
 






Yes


!
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Disappointing that such an important fix is broken. Good response by MS though and good options to limp along until they can rerelease the update.
 
Microsoft has had to recall a critical security fix for Microsoft Exchange 2013 released Tuesday. For admins who haven't applied the fix yet the workaround is highly recommended.
1
Paul Ferguson's profile photoChester Wisniewski's profile photo
2 comments
 
I would like to say "Wait before you patch", but I think that is terrible advice. On critical servers it is a good idea to test, but this wasn't an obvious thing to find. 

All change brings risk? The risk of patches failing is almost always lower than the risk of compromise. My lesson? Deal with it. Patching is always the better bet, even if it goes wrong once in a while. Not patching goes wrong almost always.
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Maybe it is time for the US to nationalize data breach notification laws. This patchwork of "Hey you live in Michigan, you're screwed, but you might never know. Oh you live in North Dakota, you will at least find out when you're screwed" has got to stop.
 
The US states of Vermont and North Dakota recently amended their data breach notification laws to cover more organizations and include medical records not currently protected under HIPAA. Meanwhile, the state of Michigan lost 49,000 names, birth dates and cancer screening results and claims they are not "medical records". What do you think?
3
1
Steve Sanders's profile photoPaul Ferguson's profile photoChester Wisniewski's profile photo
3 comments
 
+Chester Wisniewski A national, mandatory data breach law would be much preferable to the patchwork of state laws (or complete lack thereof) we have now.
Add a comment...
 
Finally a way for the average Jane to find out what Facebook, Twitter and Google want to do with your information.
 
Getting your head around social media privacy policies typically requires Aspirin. A new website from the University of Victoria tries to help with plain English explanations, not medicinal remedies.
1
Add a comment...
People
Have him in circles
766 people
Education
  • St. Clair High School
Basic Information
Gender
Male
Other names
Chet
Work
Occupation
Senior Security Advisor
Skills
Public Relations, Security, Privacy, Encryption, Malware, Viruses, Antivirus, Network Security
Employment
  • Sophos
    2003 - present
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Vancouver, Canada
Contact Information
Work
Email
Address
580 Granville St, Vancouver BC V6C1W6, Canada