Profile

Cover photo
Chester Wisniewski
Works at Sophos
Attended St. Clair High School
Lives in Vancouver, Canada
825 followers|82,263 views
AboutPostsPhotosVideosReviews

Stream

Chester Wisniewski

Shared publicly  - 
 
Excellent summary of privacy/security risks of connected convenience by +Paul Wagenseil
 
Apple's new features introduced at WWDC 2016 threaten both your digital and your physical security.
View original post
1
1
Paul Wagenseil's profile photo
 
Thanks!
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
 
Storing passwords, a brief recap:

* 1990: Just put them into a database.
* 1995: You gotta MD5 those bro, plain-text is not good.
* 1996: I heard MD5 is no good anymore, better SHA-1 one those.
* 1997: Better add a sleep delay to slow down brute-forcing through remote connections.
* 1998: Add a salt, bro, beware of dictionary attacks. One per database should be enough.
* 2000: Sorry, I meant a unique salt per password. There is this thing called rainbow tables now.
* 2005: SHA-1 is broken too now, we need to migrate to SHA-256.
* 2010: Forget about SHA-256, we need to deal with GPU crackers now. Let's just key-stretch for now.
* 2014: Our homegrown key-stretching algorithm turned out to be a massive failure. Let's just switch to scrypt.
* 2015: OK, our data at rest is safe (for now) but our user passwords still made it to pastebin because we decrypt everything in RAM and hackers dumped everything from there.

COMPUTERS WHYYYYYYYYYYYYYYY
14 comments on original post
1
Rob Meijer's profile photoChester Wisniewski's profile photoPeter da Silva's profile photo
4 comments
 
The operating system I was using in 1978 was using encrypted passwords with multiple salts.
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
 
#TBT: Take a gander at this vintage job ad for Sophos... Circa October 1988, published in Daily Information for Oxford University.

FYI, this position has been filled. ;-) But we have other opportunities that I have opened up since: https://www.sophos.com/careers
View original post
2
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Who knew the shell could be so dirty?
 
Only people who play with terminal will understand ;) 
1
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
The Xbox One seems to only be partially baked. Feels like a rush job.
1
1
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Is there a better way to celebrate Autumn than fresh sour dough and some spiced cider?
7
Tina Julian (TrilliumPrime)'s profile photoPatty Julian's profile photoJeff Pettorino's profile photoEddie Price's profile photo
6 comments
 






Yes


!
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Apply the Fix it now... Or do what I do and stop using IE. Friends don't let friends use Internet Explorer.
 
Attention Internet Explorer users (and administrators). There is a new zero-day attack in the wild, be sure to apply the Fix it or ensure EMET is protecting Internet Explorer for protection.
View original post
4
Michael Jostmeyer (Josi)'s profile photo
 
Yes, stop using it! 
Add a comment...
In his circles
216 people
Have him in circles
825 people
Jussi Timperi's profile photo
Michael J. Daugherty's profile photo
Kara McNair's profile photo
G Sarathy's profile photo
Peter Vogel's profile photo
Vinmay Nair's profile photo
Maxim Weinstein's profile photo
christino ronaldo's profile photo
Pedro Sanchez's profile photo

Communities

14 communities

Chester Wisniewski

Shared publicly  - 
 
I love Fiscal the Fraud Fighting Ferret... In fact, I WAS Fiscal for a short time in Gold Coast, Queensland Australia last week
 
Click it and have a listen. You know you want to.
Chester Wisniewski is back from Down Under to resume our podcast series. From fraud-fighting ferrets to a convicted "Spam King" - enjoy!
View original post
1
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
 
SophosLabs researcher Gabor Szappanos is at it again, with new research exploring and explaining the mechanics of an intriguing malware construction kit developed in Russia and available in underground cybercrime markets, Microsoft Word Intruder (MWI). Read more: http://soph.so/RHHKE 
View original post
1
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
I don't usually overtly promote Sophos stuff, but I am in love with the #Sysmas campaign. Anyone who has ever worked in IT can empathize.
3
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
 
Brace yourselves, the ultimate IT throne is coming... And you could win it.

Find out how here: http://soph.so/zjF3V   #SophosSysmas   #SysAdminDay  
1 comment on original post
1
2
Add a comment...

Chester Wisniewski

Shared publicly  - 
 
Unlike Microsoft, at least Mozilla were able to release an update with their announced vulnerabilities. Get over to getfirefox.com or check for updates if you are a Firefox surfer.
 
For the second day in a row critical web browser flaws have been made public. This time it was Mozilla's turn releasing Firefox 24.0 fixing 17 vulnerabilities, 7 of which are critical.
View original post
1
1
Add a comment...
People
In his circles
216 people
Have him in circles
825 people
Jussi Timperi's profile photo
Michael J. Daugherty's profile photo
Kara McNair's profile photo
G Sarathy's profile photo
Peter Vogel's profile photo
Vinmay Nair's profile photo
Maxim Weinstein's profile photo
christino ronaldo's profile photo
Pedro Sanchez's profile photo
Communities
14 communities
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Vancouver, Canada
Contact Information
Work
Email
Address
580 Granville St, Vancouver BC V6C1W6, Canada
Work
Occupation
Senior Security Advisor
Skills
Public Relations, Security, Privacy, Encryption, Malware, Viruses, Antivirus, Network Security
Employment
  • Sophos
    2003 - present
Education
  • St. Clair High School
Basic Information
Gender
Male
Other names
Chet
Modern, clean, well maintained and super friendly staff.
Public - in the last week
reviewed in the last week
Convenient off-strip accommodations, clean room, friendly staff. Nice to be at a non-smokibg, non-casino location in Vegas.
Public - 3 weeks ago
reviewed 3 weeks ago
Room wasn't properly cleaned, lounge closed on weekends.
Public - 2 months ago
reviewed 2 months ago
Clean room, convenient location. Property is a bit dated, but well maintained.
Public - 3 months ago
reviewed 3 months ago
25 reviews
Map
Map
Map
Brand new, great location, friendly staff.
Public - 2 months ago
reviewed 2 months ago
Dropped in for a massage. Was noisy from construction work, which isnt the best for relaxation. Staff was friendly and service was good.
Public - 3 months ago
reviewed 3 months ago