Steelwedge Software

Steelwedge Software


Do You Have Planning Insight? Collaborative S&OP Requires Easy Access to Data and Analytics

Posted: 28 Aug 2013 08:32 PM PDT

Chances are you're collecting volumes of data to manage your business. Most companies today amass veritable mountains of digital details on how their business has performed in the past in the form of reports, customer feedback, trading partner metrics, and … Continue reading →

Steelwedge Software

Steelwedge Software


Women in Technology: The Balancing Act

Posted: 27 Aug 2013 01:52 PM PDT

The day I sat down at my desk to put pen to paper (or fingers to keyboard) to write this post resembled most weekdays when I am not traveling. Walk with the dog at 5:30 am, then feed her and … Continue reading →

bug I.T. s - Technology News and Updates

bug I.T. s - Technology News and Updates


Khalil Shreateh Hacked Mark Zuckerberg's Private Wall

Posted: 18 Aug 2013 05:23 PM PDT

Khalil Shreateh, a Palestinian IT Graduate and a white hacker reported to Facebook on the discovered vulnerability that the Social Media site is having - allowed an attacker to post anything on anyone's wall eventhough the attacker is not in your friends' list. But Facebook's security team didn't do something about the issue thus, Khalil posted a demo to Facebook's Founder and CEO, Mark Zuckerberg's Wall (see below image)

This White hacker Khalil explained everything in his blog post which he submitted a full definition and description of the bug but when he submitted it, he got an email , "I am sorry this is not a bug." He even made a follow-up proof to the Facebook Security Feedback Page in which researchers can win rewards of at least $500 for finding significant vulnerabilities.

Khalil Shreateh, photo from his facebook page
But due to the desperate move of Khalil, his official account was disabled by Facebook. Reason? Demonstrating or publishing the vulnerability constitutes a violation of Facebook's terms of service. And worst, he won't be paid under Facebook's bug campaign.


Wedi sele: r we still meeting at 11:00am?

Steelwedge Software

Steelwedge Software


Your S&OP Analytics: Crystal Ball or Ball and Chain?

Posted: 15 Aug 2013 06:00 AM PDT

The following Steelwedge blog guest posting is submitted by Bob Ferrari, Managing Director, The Ferrari Consulting and Research Group, and Founder, Supply Chain Matters blog. This week, I had the opportunity to be the featured guest speaker for the ongoing … Continue reading →

bug I.T. s - Technology News and Updates

bug I.T. s - Technology News and Updates


Facebook Voice Technology Soon!

Posted: 13 Aug 2013 09:20 PM PDT

Yes, Facebook's product manager Tom Stocky confirmed on Monday on his post that World's Number One Social Media Site, Facebook, will acquire Mobile Technologies, a company which is behind speech recognition and machine translation technologies.

Photo Credit: Mashable.com





"It has always been our mission to make the world more open and connected. Although more than a billion people around the world already use Facebook every month, we are always looking for ways to help connect the rest of the world as well. Voice technology has become an increasingly important way for people to navigate mobile devices and the web, and this technology will help us evolve our products to match that evolution. We believe this acquisition is an investment in our long-term product roadmap as we continue towards our company's mission.", Tom added.

So we believe, this voice technology will soon be rolled-out and incorporated to Facebook Apps in Mobile phones soon.

Steelwedge Software

Steelwedge Software


What is Your S&OP Data Telling You? Find Out at the SCOPE Fall Conference

Posted: 09 Aug 2013 04:01 PM PDT

What is your planning data telling you? If it's not able to answer the following types of questions, you’re selling your business short: How is our sales funnel impacting our demand plan? What is the revenue risk if we are … Continue reading →

The Role of Statistical Forecasting in S&OP

Posted: 31 Jul 2013 11:43 AM PDT

The collaborative nature of sales and operations planning (S&OP) begs the question: Do we need a statistical forecast? Is the “best-fit” engine a dinosaur that ought to be relegated to the past? Many companies ask these questions as if there … Continue reading →

Establishing a Single Plan of Record for Supply and Demand at Radisys

Posted: 18 Jul 2013 10:16 AM PDT

While outsourcing manufacturing operations can undoubtedly create distinct cost-saving benefits, it often also brings a loss of visibility and control. When Radisys, the market leader in enabling wireless infrastructure solutions, outsourced all of its manufacturing in 2009, the company found … Continue reading →

Do You Have S&OP Shock Absorbers for your Business? Radisys Does.

Posted: 11 Jul 2013 04:02 PM PDT

The strength of a superior sales and operations planning (S&OP) infrastructure lies in its ability to empower a business to absorb and maneuver through the changes arising from external and internal sources. No one knows this better than Radisys, the leading … Continue reading →

Gartner’s Tim Payne Follows Up on Top Technology Tips for Supply Chain Planning

Posted: 01 Jul 2013 11:10 AM PDT

On June 21st, Gartner's lead supply chain technology analyst, Tim Payne, led a thought-provoking Steelwedge Agility Series Webinar on re-thinking technology selection criteria for supply chain planning. In this session, he advocated that the current top two criteria often used … Continue reading →

Pro Hack - Best Hackers of India-Revealed

Pro Hack - Best Hackers of India–Revealed


I have had enough..I am very very pissed off as India has become the land of the skids & the greatest contribution to the same has been provided by imitators of Fadia business model ..And for the time being they are having good business by making fool of naive minds. Nowadays everyone I see (and meet) is a freelance security consultant, without even knowing the basics and intricacies of Security as process,acumen,method & lastly knowledge.

When I ask them, "Oh great, nice to meet you, so what you have been working on lately?"

The answer is cryptic bullshit about using Trojans, hacking Facebook profiles (using *means*..duh) , pentesting websites (using haviz/acunetix or automated tools without doing any static code analysis, or XSS'ing the website without even the hint of persistent ones) ,servers and even SEO (!).

A more advanced skid one will babble about using Backtrack/KALI and impress by using metasploit to show how exploits are run to compromise systems (insecure one, also in place of writing their own they just update it) , bit of showing connections to underground scene (wait what ?!) & having everyone by a cryptic handle in their Facebook profiles. 

"Nice..So..what is *new* that you are working on lately?" I exclaim.

The media ?

Well..it goes apeshit whenever they hear about hacking prodigies. Well to uneducated media journalists, let it be known to you, RESEARCH BEFORE YOU VOMIT ANYTHING. Why don't you go through Charles Assisi's Article on Ankit Fadia and LEARN SOMETHING ?!!

Worst part - These guys are even authoring books on hacking. Go figure :/

Every time some hacking prodigy or best hacker releases a book on "guide to hacking" with age old obsolete (& mostly stolen) content, a cute bunny performs harakiri with his copy of Sn0wcrash somewhere .

Point in question is that NONE OF THE GUYS WHO PROCLAIM to be the BEST HACKERS IN INDIA have never appeared in reputable security conferences to show their mettle. Instead, they have created their own versions of DEFCON & HACKING CONFERENCES so that they can sing songs about their privates in full glory.

    PS: Every time I read Norman Shark's report on an Indian APT, I have a facepalm, just saying. How on earth it was classified as an APT is beyond me.But again, not diverting too far from my point, back to Hackers.

I owe to a lot of people ; yes, every pro was a skid, I admit it, however what separates a skid or a Charlatan from a true 1337/seasoned security researcher is their attitude towards learning, reproducing, validating and then putting their own blood,sweat & tears into research to advance it. 

I have met a quite a lot of talented folks in corporate world and have got the privilege to work with some extremely talented people in network security (I am looking at you fambon/jach/m0d412 =] ). Having watched the scene carefully, I wanted to make note of some of most talented folks in Indian security scene today,  people who are Hackers (whether they acknowledge it or not) and are not *self proclaimed Hackers/best Hackers/leets* (guys you will find dime a dozen).  Seriously guys..where is Halvar Flake of India?

I wanted to do it as they have made significant contribution to the Indian hacking scene , be it awareness,exploits,pwnage or anything, they have been doing what is needed today , rather than to create an army of skids that gave everyone a bad name.

Of course you will argue that the real guys are always hiding in the shadows (read:null) & there are a lot who are working behind the scenes,but still these are the ones you would like to know about (in no particular order).

1.  Sanjay Rawat

Sanjay Rawat
Veteran security researcher specializing into Code optimization, Machine learning,VA,fuzzing and Network security. One of my heroes I look & greatly idolize.

2.  Rahul "fb1h2s" Sasi

Rahul Sasi
I have known Sasi since quite some time, & he is the current torch bearer of the face of Indian hackers, his research into HID devices-Biometrics,Datacards,IVR has recieved widespread attention and has given Indian security scene a good name.

  PS: Rahul, if you are reading this , I chose this pic as this makes you resemble more like a cross between Alan Cox & Cory Doctorow, some offbeat folks I greatly admire, no kidding : P

3.  Vinay "Vinnu" Katoch
Long time L0Xian has impeccable skills in exploit development, reverse engineering ,malware analysis and development. Known for his exploits in JVM,ASLR/DEP bypass and his quite nature.

 

4.  Vivek Ramachandran
Vivek Ramachandran

Well, how he can be even missing from this list. His famed Café Latte Attack & his latest primer on making security accessible to everyone via Securitytube has helped millions to learn security the right way, at least the nascent steps. Kudos to him.

5.  Rajshekhar Murthy / Atul Alex Cherian
The Malc0n duo is quite infamous for bringing raw,uncensored malware research,development into the spotlight. Malc0n exclusively focuses on proactive malware research and analysis & the responsible folks have been instrumental in making it an international platform.

Honourable mention : Folks at n|u,g4h,SX, I always take you for granted since you have always been 1337s, you don't need a lesser mortal to define your contribution to the scene.

I hope my rant was quite clear (!) , concise and to the point, I hope the next time you will hear about some Indian hacking prodigy in your local newspaper, Facebook page or on a poster at your college campus, you will QUESTION YOURSELF TWICE & ask the goodol' folks at n|u/SX/g4h for a piece of their mind.

If you want to go through the last time I ranted about the BEST HACKERS IN INDIA, click here.   You can also read more about Charlatans at Attrition.org, my favourite place to kill off time.

Just in case you might question my authority of ranting about the topic, then well, I hope you will get it someday.

    


Sponsor message
powered byad choices

More Recent Articles


Sponsor message
powered byad choices



Your requested content delivery powered by FeedBlitz, LLC, 9 Thoreau Way, Sudbury, MA 01776, USA. +1.978.776.9498

 

Steelwedge Software

Steelwedge Software


Do You Have the Right Planning Technology? Revisit the Priorities with Gartner and Steelwedge

Posted: 19 Jun 2013 08:33 AM PDT

Steelwedge looks forward to hosting a webinar entitled “Selecting the Right Planning Technology: Time to Revisit Priorities,” on Friday, June 21, 2013 at 12 pm EDT. Tim Payne, Research Vice President at Gartner, will present during this live, interactive webinar. As … Continue reading →

Partner Perspectives: Got Agility?

Posted: 13 Jun 2013 08:38 AM PDT

Partnership, as defined by Wikipedia, is "an arrangement where parties agree to cooperate to advance their mutual interests." I believe the fundamental reasons people and organizations establish partnerships, including software vendors and channel partners, have not changed. It's collaboration for … Continue reading →

Are You Ready for 5 Stages of S&OP Maturity?

Posted: 06 Jun 2013 12:20 PM PDT

Two weeks ago, at its annual Supply Chain Executive Conference in Phoenix, Gartner rolled out the latest evolution to its sales and operations planning (S&OP) maturity model. Part of the reason: a majority of manufacturers were getting "stuck" at Stage … Continue reading →

Global Planning Q&A with S&OP Expert Tom Wallace

Posted: 31 May 2013 10:06 AM PDT

On May 29, 2013, Tom Wallace, sales and operations planning (S&OP) author and educator, and Steelwedge Vice President, Nari Viswanathan, presented a webinar entitled "Is Your Global Planning Like Whack-A-Mole?," as part of the Steelwedge 2013 Agility Webinar Series. Hundreds of people joined the … Continue reading →

Steelwedge Software

Steelwedge Software


The Role of Statistical Forecasting in S&OP

Posted: 31 Jul 2013 11:43 AM PDT

The collaborative nature of sales and operations planning (S&OP) begs the question: Do we need a statistical forecast? Is the “best-fit” engine a dinosaur that ought to be relegated to the past? Many companies ask these questions as if there … Continue reading →