Throwing Fire is a blog about security and social engineering.

• 19 Apr 2012 » What's Old Is New Again
  A new security vulnerability in OpenSSL turns out to have been included in a book about finding security vulnerabilities, 6 years ago!
• 22 May 2011 » Security Through Obscurity
  Why I think the increasingly popular 'That's not security. That's obscurity.' attitude is unhelpful.
• 08 May 2011 » LastPass Disclosure Shows Why We Can't Have Nice Things
  Response to the media's hysteria surrounding LastPass' responsible security warning.
• 07 May 2011 » Exploring a Simple Yet Effective Web Server Botnet
  A look into the workings of a malicious PHP script used to take control of poorly configured web servers including Apache, IIS and Xitami.