• Bypassing Google’s Two-Factor Authentication https://blog.duosecurity.com/2013/02/bypassing-googles-two-factor-authentication/ 70 comments 25/2/2013
• Big problems with ASLR in Ice Cream Sandwich http://blog.duosecurity.com/2012/02/a-look-at-aslr-in-android-ice-cream-sandwich-4-0/ 18 comments 17/2/2012
• Announcing Duo’s two-factor authentication for Unix http://blog.duosecurity.com/2011/04/announcing-duos-two-factor-authentication-for-unix/ 23 comments 20/4/2011

• Bypassing Google’s Two-Factor Authentication https://blog.duosecurity.com/2013/02/bypassing-googles-two-factor-authentication/ 2 comments 25/2/2013 security

• Bypassing Google’s Two-Factor Authentication https://blog.duosecurity.com/2013/02/bypassing-googles-two-factor-authentication/ 26 comments 25/2/2013 netsec
• Bypassing Google's Two Factor Authentication https://blog.duosecurity.com/2013/02/bypassing-googles-two-factor-authentication/ 26 comments 25/2/2013 programming
• Exploit Mitigations in Android Jelly Bean 4.1 - Jon Oberheide (July 2012) https://blog.duosecurity.com/2012/07/exploit-mitigations-in-android-jelly-bean-4-1/ 6 comments 24/11/2012 netsec
• A look at ASLR in Android Ice Cream Sandwich 4.0 (very informative read) http://blog.duosecurity.com/2012/02/a-look-at-aslr-in-android-ice-cream-sandwich-4-0/ 7 comments 17/2/2012 netsec
• RSA-proofing our Duo Push two-factor authentication http://blog.duosecurity.com/2011/06/rsa-proofing-our-duo-push-two-factor-authentication/ 5 comments 22/6/2011 netsec
• When Angry Birds attack: Android edition http://blog.duosecurity.com/2011/05/when-angry-birds-attack-android-edition/ 5 comments 25/5/2011 netsec