Interesting Information Security Bits for 02/11/2009

by kriggins on February 11, 2009

in Interesting Bits

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. This might be an interesting report.
    Driving Fast and Forward: Managing Information Security for Strategic Advantage in a Tough Economy (pdf)
    Tags: ( general )
  2. Little patch work to do on our Windows systems.
    4 Patches Issued By Microsoft, 2 Critical - Security Watch
    Tags: ( vulnerability windows patches )
  3. Time to patch your Blackberry.
    RIM Issues BlackBerry Security Advisory -- BlackBerry -- InformationWeek
    Tags: ( vulnerability blackberry patch )
  4. Never forget that it is not just your organization that may be affected by a data breach. Heartland is a case in point.
    Heartland Breach Affects 135 Banks and Credit Unions (So Far) | Threat Level from Wired.com
    Tags: ( breach )
  5. Dry cleaners, Ebay, etc. Folks, we really need to get a handle of sanitizing our systems be fore we let them out of our control.
    Techworld.com - Sensitive data found on eBay hard drives
    Tags: ( data-leakage )
  6. Looks like some interesting stuff going on with snort.
    VRT: Important Snort rule changes and the new dcerpc preprocessor
    Tags: ( ids snort )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Interesting Information Security Bits for 02/09/2009

by kriggins on February 9, 2009

in Interesting Bits

Here are today's Interesting Information Security Bits from around the web.

  1. You've probably already seen this, but if you haven't, Kaspersky had a little problem this weekend. They did get it corrected quickly.
    Kaspersky database exposed | Security and the Net
    Tags: ( vulnerability sql )
  2. Folks, as Graham says, secret is secret. Don't chatter about stuff on Facebook, Twitter, etc. that should be secret. Seems obvious, but apparently, some people are quite adept at missing the elephant standing in the room.
    Congressman Twitters secret trip to Iraq | Graham Cluley's blog
    Tags: ( privacy socialnetworking confidentiality )
  3. If you use OpenDNS as your name resolution provider, which I heartily recommend, you will have some additional protection in place this week.
    OpenDNS to step up fight against Conficker worm
    Tags: ( malware opendns conficker worms )
  4. A nice primer on DLP.
    What You Really Need To Know About Data Loss Prevention - insider threats/Management - DarkReading
    Tags: ( dlp )
  5. A nice post with some good recommendations.
    Digital Soapbox - Information Security, Risk & Data Protection Blog: People Hacking 101: How to Infiltrate a Credit Agency
    Tags: ( data-leakage )
  6. The 2008 SANS Salary Survey is available.
    salary_survey_2008.pdf (application/pdf Object)
    Tags: ( salary )
  7. The latest Ethical Hacker Network challenge is up. Go get'em!
    The Ethical Hacker Network - Brady Bunch Boondoggle
    Tags: ( challenge )
  8. A new man-in-the-middle tool is available. It was released a Schmoo Con this weekend. Mubix has a copy for us if you are interested in playing with it.
    The Middler gets released at ShmooCon! - Room362.com
    Tags: ( pentest mitm )
  9. New version available of Samurai.
    Samurai LiveCD version 0.4 released | Security4all - Dedicated to digital security, enterprise 2.0 and presentation skills
    Tags: ( tools samarai )
  10. Something to think about. BTW - You might want to think about leaving your garage door opener in your vehicle. Or locking the door from the garage to the house if you do.
    Digital Soapbox - Information Security, Risk & Data Protection Blog: Your GPS is evil
    Tags: ( data-leakage )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Reblog this post [with Zemanta]

{ 0 comments }

Interesting Information Security Bits for June 12th, 2008

by kriggins on June 12, 2008

in Interesting Bits

Howdy folks.

We are going to try something a little new today.

As you have all probably realized, these posts have all been built from blogger sources to date. I am going to start expanding them to include things I see in the news and from other sources that have infosec applications. As we go forward, I am interested in knowing if you would prefer to have two separate posts or if you like the combined format.

As always, leave a comment with your opinion or email me kriggins _at_ infosecramblings.com. On with the show.

From the Blogosphere.

Jennifer Leggio has a post up on her new blog Feeds at ZDNET (congrats Jennifer) about privacy concerns with Company Groups on Linked. She points out some very real privacy and data leakage concerns for this type of automated grouping.

Richard Bejtlich has a good summary of the Verizon Business 2008 Data Breach Investigations Report which you should go ahead and read.

From the newsosphere.

Via Dark Reading, RSA is introducing a flexible card shaped authenticator.

Via SearchSecurity, The PCI council is launching an assessor quality assurance program. Kinda have to wonder why it has taken this long for something like this to happen.

The Register brings us an interesting article about fraudsters gaming the address verification system in use in the UK for charges.

From Comcast.net congressmen are saying that China is hacking their computers. Of course China is denying it.

Have a great day and remember, let me know which format you prefer, combined or separate.

Kevin

Technorati Tags: , , , , , , , , ,

{ 1 comment }

Next Entries →