Good afternoon everybody! I hope your day is going well.
Here are today's Interesting Information Security Bits from around the web.
- Hmmm. Data leakage anybody? Didier is at it again.
Embedding and Hiding Files in PDF Documents << Didier Stevens
Tags: ( pdf ) - Looks like we need to tighten our belts when thinking about DR. Symantec has released their survey results.
Symantec releases Disaster Recovery survey results - Security
Tags: ( dr bcp symantec ) - Rybolov has a post up that really should be read. He points out that including regulatory/standards control language in a contract is not equivalent to a "buildable, testable, measurable, and achievable" security control.
Your Security "Requirements" are Teh Suxxorz | The Guerilla CISO
Tags: ( controls requirements ) - The first vulnerability in third party tools that use Twitter has been published.
TwitPwn: MoTB #01: Multiple vulnerabilities in bit.ly service
Tags: ( twitter ) - GO READ THIS! NOW! It is great! (Don't drink while you read it!)
BSOFH: All's fair in security and war.
Tags: ( humor ) - Some interesting stuff on vulnerability scanning the cloud.
Anton Chuvakin Blog - "Security Warrior": Vulnerability Scanning and Clouds/SaaS/IaaS/PaaS
Tags: ( pci cloud ) - This is pretty cool. Write-ups on the DefCon 2009 CTF qualifiers.
Defcon CTF Quals 2009 Writeups
Tags: ( defcon ctf ) - This is great. Looking forward to hearing more about it in the future. Way to go Wesley!
GhostExodus, the ETA, and a Control-Systems Incident at Carrell Clinic (Part 1) << McGrew Security Blog
Tags: ( crime-doesnt-pay ) - Barclay's 2009 Interim Security Market report is out. The web page is a little confusing, but the pdf is for the 2009 report.
Information Security Interim Market Report July 2009 - Barclay Simpson
Tags: ( career )
That's it for today. Have fun!
Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.
Kevin
{ 0 comments… add one now }