apple

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. You can download the raw anonymized survey results from the Project Quant survey.
    Raw Project Quant Survey Results
    Tags: ( patching )
  2. Want to hear about writing a security book? Andrew will be SANS Network Security 2009 talking about that very thing.
    Andrew Hay >> Blog Archive >> Presenting at SANS Network Security 2009 - "So You Want to Write a Security Book, Eh?"
    Tags: ( writing books )
  3. Some thoughts on compliance in a virtualized environment.
    Five Ways To Meet Compliance In A Virtualized Environment - DarkReading
    Tags: ( virtualization )
  4. A couple things to check and do after you upgrade to Snow Leopard.
    Snow Leopard downgrades security and misses opportunity to improve | Chester Wisniewski's Blog
    Tags: ( apple macosx )
  5. In case you didn't know, there is going to be a blogger meetup at RSA Europe in October. 🙂
    RSA Conference - Security Bloggers Meet up 2009 - London | Security Active Blog
    Tags: ( meetup )
  6. This post strikes a particular chord with me as I have been thinking about this quite a bit lately. Most of us are operating under some pretty crushing workloads, but it we don't take time to manage our people, those workloads will just even heavier.
    Security Ripcord >> Blog Archive >> Take Time To Manage
    Tags: ( management )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Dave points out a really nifty tool that Voltage has released. Check it out.
    Voltage Releases Data Breach Map : Liquidmatrix Security Digest
    Tags: ( data-leakage map )
  2. Rich offers up his Mid 2009 State of Web Application and Data Security.
    Securosis Blog | The State of Web Application and Data Security--Mid 2009
    Tags: ( general )
  3. Time to patch Quicktime and, by extenstion, iTunes.
    Apple plugs 10 QuickTime code execution holes | threatpost
    Tags: ( applce quicktime itunes patches vulnerablity )
  4. @lithium's latest crypto challenge is waiting for you to puzzle over.
    Crypto Challenge - PandaLabs
    Tags: ( cryptography challege )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Be careful on your android based devices. Apparently there is a pretty nasty exploit going around.
    Android exploit so dangerous, users warned to avoid phone's web browser | The Toybox | ZDNet.com
    Tags: ( android mobile )
  2. All you need is a rubber band.
    Defeating the CODi Titanium Series 4-Digit Combination Cable Lock
    Tags: ( locks )
  3. Get you very own Lijit search widget for and from the Security Blogger's Network. I did. See it's over there on the right ----->
    StillSecure, After All These Years: The SBN goes Lijit officially!
    Tags: ( general )
  4. This is taking things to a whole new level in losing your right to privacy and keeping control of your biometric data.
    Mobile operators to fingerprint their customers | Security4all - Dedicated to digital security, enterprise 2.0 and presentation skills
    Tags: ( privacy )
  5. Here's a nice tip about a tool that should work on any system that uses yum for updates. Find out what changed without having to install the package with yum-changelog.
    Monkey - House: CentOS patching
    Tags: ( patching yum )
  6. All you iPhone and iPod Touch jailbreakers out there....you're criminals! At least that's what Apple is saying. EFF is fighting the good fight though.
    Apple Says iPhone Jailbreaking is Illegal | Electronic Frontier Foundation
    Tags: ( iphone ipodtouch dmca )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Well the start of a new weeks is here, along with a batch of interesting things to take a look at. Only blogs again this time.

360 Security, along with many other folks, points out that the Apple DNS Patch Fails To Randomize.

Kurt Dobbins over at Arbor Networks has an interesting post up about the Myths and Realities of the Net Neutrality Debate. Good stuff in there.

Bruce Schneier brings to our attention that the U.S. government has published its policy regarding Seizing Laptops at Borders. Basically, we take when we want to and you don't have any say in the matter.

Nifty post up at Neohapsis talking about exploiting hardware vulnerabilities in the Intel CPU. Neat stuff. Kris Kaspersky's talk "Remote Code Execution Through Intel CPU Bugs" to be given at Hack in the Box was the impetus.

Wesley has created his first Metasploit module. It is a nifty tool. You should go take a look if you are interested in pen testing.

CG points to a paper and demo for DHCP script injection. Lots of fun to be had there.

Ha.ckers.org has a nice little bookmarklet that make is easy to use MSN IP Search to find domains on the same IP address as the web page you are reading.

Chris Hayes
continues his discussion of risk in response to Shrdlu's comments on a previous post. Good stuff.

Finally, Gary Warner points us to another story about an insider selling PII.

I will be leaving for Vegas on Thursday so there will be light posting here until next week.

Kevin

Technorati Tags: , , , , , , , ,

{ 1 comment }