Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. This is a bummer. It's sad to see this organization close down.
    CastleCops Shuts Down - DarkReading
    Tags: ( phishing spam )
  2. The winner is revealed and a walk-through available for the Daemon contest.
    The Ethical Hacker Network - Daemon - A Contest Revealed
    Tags: ( challenge )
  3. An interesting tool by Cutaway. Looks like something worth playing with.
    Security Ripcord >> Blog Archive >> Scalp External XML Reporter (SEXR)
    Tags: ( apache detection logs parser )
  4. Ryan has a nice write-up of the new certificate issue.
    SSL broken! Hackers create rogue CA certificate using MD5 collisions | Zero Day | ZDNet.com
    Tags: ( exploit ssl md5 cert )
  5. Richard has a nice post up with a few lessons learned from 2008. Worth a read.
    2008 Security lessons learned | NetworkWorld.com Community
    Tags: ( general )
  6. As usual, JJ helps make a very technical topic quite understandable.
    Security Uncorked >> A Layman's Explanation of the CA Certificate Vulnerability
    Tags: ( exploit ssl md5 cert )
  7. I wouldn't go so far to say that the cert hack doesn't matter and Shrdlu doesn't really either. That being said, Shrdlu makes some very good points regarding the level of risk introduced by this issue.
    Why the MD5 cert hack doesn't matter.
    Tags: ( vulnerability exploit ssl md5 )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.


Reblog this post [with Zemanta]