malware

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. The latest Packet Challenge is up.
    "Name That Tune" - Packet Challenge << I Smell Packets
    Tags: ( challenge forensics )
  2. The speaker list has been finalized for CarolinaCon. Check it out.
    CarolinaCon: The NC Regional Technology Conference - March 19th, 20th, and 21st 2010
    Tags: ( conferences carolinacon )
  3. More OSSEC fun. This time using Logwatch.
    Combining Logwatch and OSSEC >> chrisbrenton.org
    Tags: ( ossec logging )
  4. Here is a nifty reverse engineering example.
    Traversing a 'DLL': Financial Crimeware (Banker) << TraverseCode.com
    Tags: ( reverse-engineering malware )
  5. The Symantec State of Enterprise Security Report for 2010 is out. I haven't read it yet, but it is on the pile.
    Symantec State of Enterprise Security Report (application/pdf Object)
    Tags: ( report )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Andrew has a talk up for consideration for BSidesSF.
    Andrew Hay >> Blog Archive >> Vote For My #BSidesSF Talk "My Life on the Infosec D-List"
    Tags: ( bsidessf )
  2. Apache hit end-of-life today. The last update has been released.
    Apache HTTP Server 1.3's final update released - The H Security: News and Features
    Tags: ( apache )
  3. Ouch. That's a lot of infected machines.
    48% of 22,000,000 Scanned Systems Malware Laden
    Tags: ( malware )
  4. Ben has tossed his hat into the BSidesSF ring too.
    BSides or Be Square: San Francisco and Austin (The Falcon's View)
    Tags: ( conferences bsidessf )
  5. Andrew's next interview is with Rob Fuller. I met Rob last year at RSA. Good guy.
    Andrew Hay >> Blog Archive >> Information Security D-List Interview: Rob Fuller
    Tags: ( interview )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Some thoughts about the security job market and how to get into it. (Thanks Ron)
    E-Commerce News: Trends: Breaking Into the Security Job Market
    Tags: ( career )
  2. Anton has some comments about log context. Very important stuff.
    Anton Chuvakin Blog - "Security Warrior": On Log Context
    Tags: ( log-monitoring )
  3. This paper (pdf) takes a look at replacing session cookies with digest authentication.
    WeaningTheWebOffOfSessionCookies.pdf (application/pdf Object)
    Tags: ( session webappsec )
  4. Another really good reason for egress controls.
    Sunbelt Blog: Botnet C&C switching to http; away from IRC
    Tags: ( botnet )
  5. That's a lot of malware.
    Report: 48% of 22 million scanned computers infected with malware | Zero Day | ZDNet.com
    Tags: ( malware )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. The Forrester Blog For Security & Risk Professionals
    Tags: ( general )
  2. Weathering the Storm: A Day of Weblogs at the Internet Storm Center
    Tags: ( logs sans )
  3. Hostmap - shared/virtual host enumeration << Security Aegis
    Tags: ( tips tools )
  4. Using Curl to Retrieve Malicious Websites
    Tags: ( malware analysis forensics )
  5. Major virus outbreak at University of Exeter | Graham Cluley's blog
    Tags: ( exploit virus )
  6. Securosis Blog | Low Hanging Fruit: Endpoint Security
    Tags: ( general )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Just in case you need some help security your IIS based FTP server.
    Securing your FTP Server 101 - Nazim's IIS Security Blog : The Official Microsoft IIS Site
    Tags: ( iis ftp tips )
  2. Sunbelt has a free tool available that will decrypt files that have been encrypted by the Data Doctor 2010 ransomware.
    Sunbelt Blog: Data Doctor 2010 encrypted files: we have a tool for that
    Tags: ( malware tools )
  3. Johannes shares a few handy scripts to have in your toolbelt if you are every faced with a denial of service attack.
    DoS Attack After Action Report - Shell Scripts
    Tags: ( ddos tools )
  4. Not sure yet exactly what this accomplishes. I did it and you get a big list of things you can do, some of which you can easily do in other places and some that appear unique. It will be fun to find out what's in there.
    Get your Windows 7 God Mode Groove On | Security Active Blog
    Tags: ( windows-7 tips )
  5. This list, in many cases, relates to information security like Dilbert relates to working in the corporate world, which is a very sad thing.
    Top 10 Reasons Your Security Program Sucks and Why You Can't Do Anything About It << Amrit Williams Blog
    Tags: ( general )
  6. This looks like something fun to play with, a new entry in the open source IDS/IPS arena.
    System Advancements at the Monastery >> Blog Archive >> Suricata: A Next Generation IDS/IPS Engine
    Tags: ( ids suricata )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. The Security Ninja is developing a checklist to help in performing secure code reviews. He is doing it out in public and incorporating reader feedback as he goes. This post is the first post, but there have been two more since then. Check it out and offer your thoughts.
    A checklist approach to security code reviews << Security Ninja
    Tags: ( appsec secure-coding code-review )
  2. Mike offers his viewpoints on the purchase of Archer by EMC. Can't argue with his conclusions.
    Securosis Blog | RSA Treks to Sherwood Forest and Buys the Archer
    Tags: ( general analysis )
  3. The 2009 Annual Report from Panda has been published. I have briefly skimmed it and it is an interesting report. Shows how much malware has ramped up in the last year.
    2009 Annual Report | PandaLabs Blog
    Tags: ( panda malware report )
  4. Data Security Discovery for Project Quant has been posted. Good stuff there and, as always, they are looking for community input.
    Securosis Blog | Project Quant: Database Security Discovery
    Tags: ( database )
  5. Cutaway has updated some of his tools and also is providing his scripts in a handy svn repository.
    Security Ripcord >> Blog Archive >> Syscombotln and Tools Update
    Tags: ( forensics scripts tools )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. I think I pointed to part 1 of this article, but can't remember and am a bit too lazy at the moment to go look 🙂 Either way, the second part is up and you will find a link to the first part inside. It is some pretty cool stuff from a visualization perspective.
    Detailed look at using Circos for IT Investigation - Part II << fifth.sentinel
    Tags: ( tools )
  2. This is a must read. I'm not saying anything else other than go read it. Now. Hurry!
    Verizon Business Security Blog >> Blog Archive >> 2009 Data Breach Investigations Supplemental Report
    Tags: ( verizon dbir )
  3. Heh. The first of a series of interviews by Andrew.
    Andrew Hay >> Blog Archive >> Information Security D-List Interview: Paul Asadoorian
    Tags: ( interviews )
  4. Here is an interesting perspective on the wonderful addition of Google and Bing integrating Facebook and Twitter status updates into search results.
    Google, Bing open new criminal opportunities by adding Twitter, Facebook feeds | The Last Watchdog
    Tags: ( malware facebook twitter search google )
  5. The Social Security Blogger Awards will be happening again at RSA 2010. If you have a security blog and want to be considered you need to become a member of the Security Bloggers Network. Check inside for details.
    The Ashimmy Blog: Social Security Blogger Awards 2010
    Tags: ( sbn awards )
  6. Chris's slides and handouts from his State of (In)Security talk at the 2009 MN-GTS conference are available for a short while.
    Dr. InfoSec: MN-GTS - The State of (In)Security in 2009
    Tags: ( general )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Security Catalyst has announced the 2010 lineup of contributors. Looks like it is going to be a great year.
    Amplifying the Good: The Security Catalyst Online Experience 2010 : The Security Catalyst
    Tags: ( general )
  2. This article takes a look at the recent issue that the TSA had with a document that was not correctly redacted.
    TSA Leaks Sensitive Airport Screening Manual | Threat Level | Wired.com
    Tags: ( tsa redacting )
  3. A nice interview with Nigel Stanley discussing whitelisting.
    Winning the Malware Battle: The Move Towards Whitelisting | Optimal Security: The Lumension Blog
    Tags: ( malware whitelisting )
  4. Very nice article on VOIP and UCS attacks.
    The Forrester Blog For Security & Risk Professionals
    Tags: ( voip interception )
  5. Insider threats do exist.
    Insider Threat is Happening - Security Views - Dark Reading
    Tags: ( threat insider )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 1 comment }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Guest blog: Evil Maids on the rise | Graham Cluley's blog
    Tags: ( bitlocker tpm )
  2. Could a rubber duck steal your identity on Facebook? | Graham Cluley's blog
    Tags: ( facebook malware )
  3. AOL Ditches Security Tokens To Make Logging In Easier | Threat Level | Wired.com
    Tags: ( general )
  4. Can quantitative risk estimation serve as a guide for every-day policy decisions? << The New School of Information Security
    Tags: ( risk-management policy quantitative )
  5. Security Uncorked >> Four Options for Secure Wireless Authentication with 802.1X
    Tags: ( 80211x )
  6. Great InformationWeek/Dark Reading/Black Hat Cloud & Virtualization Security Virtual Panel on 12/9 | Rational Survivability
    Tags: ( webinar virtualization cloud )
  7. Digital Soapbox - The White Rabbit Commeth...: Exposing Malware - Part 2: Infestation
    Tags: ( malware )
  8. McAfee Gives Stats on the Riskiest Domains | CNET Security | danielmiessler.com
    Tags: ( general )
  9. Economic Recovery: Will Your IT Security Department Jump Ship? - CSO Online - Security and Risk
    Tags: ( career jobs )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Here is part 2 of my catch-up posts.

  1. Argument For Anonymity - Secure Computing: Sec-C
    Tags: ( anonymity )
  2. RaDaJo (RAul, DAvid and JOrge) Security Blog: Samurai Web Testing Framework (WTF) Firefox Add-ons Collection
    Tags: (  firefox add-ons )
  3. Medical Records: Stored in the Cloud, Sold on the Open Market | Threat Level | Wired.com
    Tags: ( data-leakage phi cloud )
  4. Moving from a Threat Centric to Trust Centric Endpoint Management Model | Optimal Security: The Lumension Blog
    Tags: ( whitelisting malware )
  5. SharePoint and Security | Retail Information Security
    Tags: ( sharepoint )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }