oracle

Hi there folks. I know it's been awhile since we've had a bits post, but never fear. I did not just click 'mark all read' and am making my way through the back log. For the next few days you should see a bits post for that day and a catch-up post. This is the first catch-up post. I apologize, but the catch-up posts will probably be commentless like this one.

  1. The Ethical Hacker Network - SSHliders
    Tags: ( challenge )
  2. Nikto 2.10 released << Ramblings of the anal security guy
    Tags: ( nikto tools webappsec )
  3. Twitter Risks | The Infosec Cynic
    Tags: ( twitter humor )
  4. Syn: Abusing VLANs With BackTrack
    Tags: ( vlans backtrack )
  5. Carnal0wnage Blog: Oracle Hacker's Handbook Book Review
    Tags: ( book review oracle )
  6. Securosis Blog | IDM: Reality Sets In
    Tags: ( idm )
  7. Do the Evolution... - fudsec.com
    Tags: ( profession )
  8. Are Security "Best Practices" Unethical? << The New School of Information Security
    Tags: ( best-practices risk-management )
  9. Information Escapology << wirewatcher
    Tags: ( passwords logging )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 1 comment }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Verizon has released their 2009 Data Breach report. I haven't read it yet, but below are a few people's first thoughts on the report.
    Verizon Business Security Blog >> Blog Archive >> The 2009 Data Breach Investigations Report
    Tags: ( reports )
  2. Martin's first pass at the PCI specific portions of the Verizon report.
    Network Security Blog >> Verizon Data Breach Investigation: The numbers say PCI IS important
    Tags: ( reports )
  3. David's first take on the Verizon report.
    Initial Thoughts on the 2009 Verizon DBIR << The New School of Information Security
    Tags: ( reports )
  4. Shrdlu's take on the Verizon report.
    Once more into the breach report.
    Tags: ( reports )
  5. Time to patch those Oracle installations.
    Oracle delivers major security patch update - Network World
    Tags: ( oracle patches vulnerability )
  6. Interesting article on a sneaky way to get a linux rootkit into the kernel.
    New Attack Sneaks Rootkits Into Linux Kernel - DarkReading
    Tags: ( linux rootkit )
  7. Some good thoughts on risk management and what it means.
    Ascension Blog >> Musing on Risk
    Tags: ( infosec risk-management )
  8. A Q&A with Johnny Long whose new ihackcharities.org website was unveiled recently.
    Q&A: Johnny Long - Christian, Pirate, Hacker, Ninja - Security
    Tags: ( general )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Looks like the Downadup worm may be setting up to cause some mischief.
    Downadup worm may hammer Southwest Airlines URL March 13 - Network World
    Tags: ( malware botnet )
  2. This is just down right scary.
    Survey: Most Oracle Shops Don't Mandate Security Patches - Network World
    Tags: ( patches oracle )
  3. This could definitely create some onerous logging and reporting requirements for those who choose to provide public internet access in their places of business.
    Bill takes aim at anonymous hot spots, like coffee shops - Network World
    Tags: ( privacy )
  4. A report by the Brown-Wilson Group is out ranking outsourcing locations on security. By security, they don't just mean information security either.
    The IT Security Guy: The Dangerous Back Alleys of Outsourcing
    Tags: ( risk outsourcing )
  5. Irongeek has updated his list of deliberately vulnerable applications on which you can practice your web application security testing skills.
    Deliberately Insecure Web Applications For Learning Web App Security (WebGoat, BadStore, Hacme, SecuriBench, WebMaven)
    Tags: ( webappsec hackme )
  6. A nifty tool that gives you the ability to view log files in some interesting and different ways.
    Highlighter
    Tags: ( tools logfile )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Hello again everybody and welcome to Monday. Below we have tidbits on Orcacle patches, common coding errors, steganography, Security Catalyst, risk assessments using FAIR, financial impact of cloud computing, a little humor about cloud computing, and a tool to help you with your regex adventures.

Have a great day do good!

  1. 41 patches coming from Oracle. Get the patch hammer ready.
    Oracle to issue 41 security patches - Network World
    Tags: ( vulnerability patches oracle )
  2. Top 25 coding errors report supposed to be released today.
    Group to detail 25 most dangerous coding errors hackers exploit
    Tags: ( secure programming coding errors )
  3. Here is free tool if you would like to play around with steganography. Steganography is defined as hiding data by embedding it in other data in such a way as to leave the original innocuous data intact.
    SourceForge.net: OpenStego
    Tags: ( tools java steganography )
  4. The 2009 contributors for the Security Catalyst site have been announced. It's a good mix. I look forward to seeing what they produce this year.
    The Security Catalyst >> Introducing the Security Catalyst Contributors for 2009
    Tags: ( general )
  5. Chris has setup a new scenario for trying your hand at a risk assessment using the FAIR (Factor Analysis of Information Risk) methodology. Take a stab at it. He will be posting the rest of the series this week.
    Risk Scenario - Hidden Field / Sensitive Information (Part 1 of 4) - The Scenario << Risktical Ramblings
    Tags: ( risk assessment fair )
  6. A nice post pointing out some financial dangers that need to be considered when using cloud based infrastructure.
    When the Cloud Bursts - Someone Gets Wet... | CloudAve
    Tags: ( cloud )
  7. Christofer has something you really must read. Classic.
    Rational Survivability: Introducing the Next Generation of Cloud Computing...
    Tags: ( cloud humor )
  8. A nifty tool to help you with your regex adventures.
    Hat tip: @mfratto
    The Regex Coach - interactive regular expressions
    Tags: ( tools regex )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin Riggins

Reblog this post [with Zemanta]

{ 2 comments }