Profile

Cover photo
Verified name
Seth Rosenblatt
Works at CNET
2,910 followers|348,664 views
AboutPostsPhotosVideosReviews

Stream

Seth Rosenblatt

Shared publicly  - 
 
The remaining four tech behemoths in the class-action antitrust lawsuit settle one month before trial. So much for seeing Eric Schmidt or George Lucas testify... 
The remaining four tech giants facing an enormous class-action lawsuit filed against them by their employees agree to a settlement before trial.
1
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
Vic Gundotra is out at Google after spearheading Google+, developer relations over 8 years
Google's social maestro Vic Gundotra is leaving the company, but won't say where he's going next.
1
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
Mayor's office strongarming SFMTA board... same old, same old: http://www.sfbg.com/2014/04/22/politics-over-policy?page=0,0
1
Add a comment...
 
New ads on Google to boost mobile app makers
Google's latest tweak to display ads will show you new app download ads, as the company pushes advertisers to focus on mobile.
2
3
george oloo's profile photoPeter Georgopoulos's profile photo
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
SF is relatively safe for people who commute by bicycle, but still has a hard time enforcing traffic laws on homicidal, psychopathic drivers http://www.sfgate.com/bayarea/article/Keep-an-eye-out-when-on-foot-in-San-Francisco-5415446.php http://blogs.sfweekly.com/thesnitch/2014/04/cycling_in_san_francisco_is_great.php
In January, this column suggested a New Year's resolution that everybody who traverses San Francisco's streets - drivers, bicyclists and pedestrians alike - be more considerate and pay more attention. The policy aims to eliminate all traffic deaths in 10 years by beefing up traffic enforcement, improving infrastructure like adding traffic lights and educating the public. Jikaiah Stevens, a self-employed hairstylist, was walking in a crosswalk i...
1
Сергей Буров's profile photo
 
Hi
Add a comment...
In his circles
403 people
Have him in circles
2,910 people
Keeley Schell's profile photo
 
ICYMI: Big #Heartbleed news today: Linux Foundation gets a dozen tech titans, from Google to Facebook to Intel and Amazon, to help save open source http://www.cnet.com/news/tech-titans-join-forces-to-stop-the-next-heartbleed/ but we're going to be screwed for a looooong time http://www.cnet.com/news/heartburn-from-heartbleed-forces-wide-ranging-rethink-in-open-source-world/
The Linux Foundation's new Core Infrastructure Initiative creates a virtual Justice League of the biggest tech firms to ensure that open-source code gets the cryptographic scrutiny that it desperately needs.
2
Add a comment...

Seth Rosenblatt

Shared publicly  - 
1
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
For the first time ever, Apple throws open the doors to an OS X beta - not just for developers anymore.
Apple opens its OS X Beta Seed Program for the first time to non-developers.
1
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
Hahahahha ::thud::
1
Add a comment...

Seth Rosenblatt

Shared publicly  - 
 
Heartbleed attack used to skip past multifactor authentication and through VPN
In one of the earliest instances of a Heartbleed attack breaking through a private corporate network, security firm Mandiant reports that a client's virtual private network session was successfully hacked.
1
Andrew McGlashan's profile photo
 
First off the article says "several years ago", that is incorrect.  The code didn't come into play until early 2012 (after code works on New  Years Eve).  Then OpenSSL may well be used by around 2/3rds of Internet facing servers, but less than 1/5th of all Internet facing servers were actually exposed for a great number of reasons.  Discovery of the problem was NOT in April of this year ... it was discovered quite some time ago, but larger players were carefully applying fixes to their systems under strict confidence -- when the bug first become public knowledge, a great deal of the trouble was avoided due to the larger providers already having fixed the issue (on the whole).  Sure there could be ramifications for around 2 years for some users, some sites and some data (perhaps lots of each of these) ... but on the whole, although this was and still is very serious, the problem space here is much less significant than it might have been.  The greatest ongoing issue is going to be certificate revocation and the lack of browser support to make sure that all certs are current and valid.  Of course some users will need to change passwords for some services, but they should definitely not do so before the servers in question are known to be /fixed/.  I think you need to read much more to understand this situation so that your reporting can be more factual and not sensationalistic ....

Also, which VPN tech was actually breached?  IPSEC and PPTP don't use OpenSSL, so it probably wasn't either of them ... even so I do know that PPTP isn't anywhere near as secure as it should be, but IPSEC should be safe.
Add a comment...
People
In his circles
403 people
Have him in circles
2,910 people
Keeley Schell's profile photo
Basic Information
Gender
Male
Work
Employment
  • CNET
    Senior Writer, 2006 - present
    Previously, Senior Editor
Public - 8 months ago
reviewed 8 months ago
1 review
Map
Map
Map