KALYPTO (IN)SECURITY

Research, demonstrations, and popcorn

SQL 2016 + Dynamic Data Masking = Exposure

Starting with SQL 2016, Microsoft has included a new “security” feature called Dynamic Data Masking, or DDM for short.  This new feature is supposed to allow you to secure data by masking it to people who should not have access.  For example, if you are a DBA and you have a database with PCI (Credit…

Continue Reading

Facebook Vulnerability… They ignored it until now.

Note:  I was not going to post on this originally since Facebook refused to fix the issue.  I like sharing things I find, but not if it is going to screw over a bunch of people.  However, others have now found the hole and are publicly demonstrating it. Back on May 7th my mother was trying…

Continue Reading