Good afternoon everybody! I hope your day is going well.
Here are today's Interesting Information Security Bits from around the web.
- Beware of visiting sites that contain sensitive information on public networks. SSLStrip makes it even easier for the bad guys to get you.
Hacker pokes new hole in secure sockets layer * The Register
Tags: ( ssl mitm ) - Yup, another vulnerability in Adobe Reader. This one has active exploits and won't be patched until mid-March. Be careful out there.
New in-the-wild attack targets fully-patched Adobe Reader * The Register
Tags: ( exploit vulnerability adobe reader ) - Kees talks to us about some issues we need to be aware of when thinking about access to sensitive information.
Handling sensitive information - Kees Leune Information Security Blog
Tags: ( access control ) - Don tells us to ask why. Good stuff in here.
Security Ripcord >> Blog Archive >> Incident Response Lessons Learned
Tags: ( incident response ) - Some good questions to consider when you are selecting you next vendor for a pen test.
How to choose a Pen Tester << Steven Branigan's Blog
Tags: ( pentesting ) - It's coming up. If you are in the heartland, this is a good option, particularly if cost is an issue.
Carnal0wnage Blog: ChicagoCon 2009s is coming up!
Tags: ( conference chicagocon ) - An interesting paper about Banking Trojans.
Bank details uncovered - PandaLabs
Tags: ( malware )
That's it for today. Have fun!
Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.
Kevin