spam

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. How to Become a Computer Forensics Investigator | Forensics, How To | Enclave Forensics
    Tags: ( forensics career )
  2. How to Cyberstalk Jobs / Cyberstalking Potential Employers
    Tags: ( surveillance privacy screening )
  3. Transparency: I Do Not Think That Means What You Think That Means... | Rational Survivability
    Tags: ( cloud amazon )
  4. Uncommon Sense Security: Hot off the [virtual] presses
    Tags: ( nist )
  5. waiting for patches to release to wsus... (terminal23)
    Tags: ( wsus patching microsoft )
  6. Twitter starts to get serious about spammers | Social Business | ZDNet.com
    Tags: ( twitter spam )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Infocon to yellow for 24 hours.
    * Infocon raised to yellow for Excel Web Components ActiveX vulnerability
    Tags: ( infocon )
  2. I knew it was not going to end well when I first heard that ATMs were going to be armed with pepper spray.
    Pepper Spray-Armed ATM Misfires, Shoots Workers | Threat Level | Wired.com
    Tags: ( general )
  3. Didier gives us a nifty little tip on hiding the fact that our laptop is encrypted.
    Quickpost: TrueCrypt's Boot Loader Screen Options << Didier Stevens
    Tags: ( encryption truecrypt )
  4. The solution and winners for the first Panda Labs challenge are up.
    1st Panda Challenge solution & winners - PandaLabs
    Tags: ( challenge answer )
  5. This is cool. One of the teams that participated in the Defcon 17 CTF qualifiers made a comic of how they answered one of the challenges. (Hat tip: @mubix)
    http://hackerschool.org/DefconCTF/17/B300.html
    Tags: ( ctf defcon )
  6. Rafal talks about a comment spam toolkit. The comments are very interesting too.
    Digital Soapbox - Preaching Security to the Digital Masses: Devastated by a Link-Spam Tool?
    Tags: ( spam )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. This is interesting. It will be worth keeping an eye on what happens in the future as the council goes forward.
    Hacker named to Homeland Security Advisory Council | Security - CNET News
    Tags: ( government )
  2. Looks like the spammers are up to a new trick that appears to be working at the moment.
    RTF File Spam Makes Its Way Through Filters - Security Watch
    Tags: ( spam )
  3. Nifty. Another tool to freely scan files for malware.
    Paretologic Released a New Free Online Malware Scan
    Tags: ( malware scanning )
  4. Here is an interesting way to keep some or all robots from crawling your website.
    Security - The Global Perspective: How to block robots.. before they hit robots.txt - ala: mod_security
    Tags: ( robots )
  5. Do you want to know more about DEP (Data Execution Prevention)? Check this out.
    Security Research & Defense : Understanding DEP as a mitigation technology part 1
    Tags: ( dep )
  6. A new packet challenge is up on Caesar's site.
    Caesar's Challenge << I Smell Packets
    Tags: ( challenge networking. )
  7. The Black Hat 2009 schedule is available now.
    Black Hat USA 2009 Schedule
    Tags: ( blackhat 2009 )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Title pretty much says it all.
    Verizon to Shut Off Outbound Port 25 E-mail Submission - Security Watch
    Tags: ( spam )
  2. If anybody in your organization ever asks about anybody ever paying fines for HIPAA violations, you can tell them yes.
    CVS pays $2.25 million HIPAA settlement
    Tags: ( hipaa settlment )
  3. There is a lot of good stuff in here with references for further investigation if you wish.
    Carnal0wnage Blog: UT SSE Presentation: Introduction to Software Security and Threat Modeling
    Tags: ( security threat modeling software )
  4. A nice post on some steps to take to get into InfoSec.
    MSI :: State of Security >> So, You Wanna Be in InfoSec?
    Tags: ( career )
  5. Graham points out a nifty add-on for Firefox. We all get things that have the url shortened for in an attempt to be helpful, this tool shows you what's under the covers so you can click on those urls safely.
    A neat add-on for Twitter | Graham Cluley's blog
    Tags: ( firefox plugin urls )
  6. Tenable got some interesting results when they monitored the ShmooCon public network.
    Tenable Network Security: Packets and Logs Found on the Shmoocon Network
    Tags: ( network scanning )
  7. Sometimes you need a full-blown file integrity suite and sometimes you need something that just gets the job done. Xavier has posted a quick bash script that will get the job done.
    /dev/random >> Blog Archive >> Quick and Dirty Integrity Check Script
    Tags: ( tools scripts integrity file )
  8. Kimmo at F-Secure and Elia Florio of Symantec collaborated on a paper about the evolution of the rootkit Mebroot. The paper is now available.
    Mebroot - F-Secure Weblog : News from the Lab
    Tags: ( malware whitepaper mebroot )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 2 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. This is a bummer. It's sad to see this organization close down.
    CastleCops Shuts Down - DarkReading
    Tags: ( phishing spam )
  2. The winner is revealed and a walk-through available for the Daemon contest.
    The Ethical Hacker Network - Daemon - A Contest Revealed
    Tags: ( challenge )
  3. An interesting tool by Cutaway. Looks like something worth playing with.
    Security Ripcord >> Blog Archive >> Scalp External XML Reporter (SEXR)
    Tags: ( apache detection logs parser )
  4. Ryan has a nice write-up of the new certificate issue.
    SSL broken! Hackers create rogue CA certificate using MD5 collisions | Zero Day | ZDNet.com
    Tags: ( exploit ssl md5 cert )
  5. Richard has a nice post up with a few lessons learned from 2008. Worth a read.
    2008 Security lessons learned | NetworkWorld.com Community
    Tags: ( general )
  6. As usual, JJ helps make a very technical topic quite understandable.
    Security Uncorked >> A Layman's Explanation of the CA Certificate Vulnerability
    Tags: ( exploit ssl md5 cert )
  7. I wouldn't go so far to say that the cert hack doesn't matter and Shrdlu doesn't really either. That being said, Shrdlu makes some very good points regarding the level of risk introduced by this issue.
    Why the MD5 cert hack doesn't matter.
    Tags: ( vulnerability exploit ssl md5 )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Reblog this post [with Zemanta]

{ 0 comments }