threats

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Hoff points to an interesting project that addresses the distributed authentication issue in web based systems.
    MashSSL - An Excellent Idea You've Probably Never Heard Of... | Rational Survivability
    Tags: ( authentication ssl web )
  2. Get your Security Threat Report 2010 while it's hot!
    Sophos Security Threat Report 2010 | Graham Cluley's blog
    Tags: ( threats reports )
  3. Jennifer is involved in a few talks at Security BSides San Fran. Vote for her!
    Security Uncorked >> The Skinny on Security BSides San Francisco
    Tags: ( conferences bsides )
  4. The finalists for the Social Security Blogger Awards 2010 have been selected.
    The Ashimmy Blog: Envelope please, and the winners are . . .
    Tags: ( awards )
  5. Very cool. Encrypt your logs before sending them across the wire.
    Immutable Security >> Using OSSEC for Encrypted Log Transport
    Tags: ( logging encryption ossec )
  6. Similar to the Amazon EC2 experiment last year, this time it is done with Microsoft's Azure.
    Breaking Password Based Encryption with Azure - Gotham Digital Science
    Tags: ( passwords cracking cloud )
  7. Looks like status quo for the PCI DSS this year.
    Security.exe - Powered by The CISO Group >> Blog Archive >> No major changes to PCI DSS in 2010, but watch for chip and pin in the future
    Tags: ( pci )
  8. Graham points out something those who use twitter should be aware of. Lists as spamming tools.
    Twitter list spam
    Tags: ( lists )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Security Catalyst has announced the 2010 lineup of contributors. Looks like it is going to be a great year.
    Amplifying the Good: The Security Catalyst Online Experience 2010 : The Security Catalyst
    Tags: ( general )
  2. This article takes a look at the recent issue that the TSA had with a document that was not correctly redacted.
    TSA Leaks Sensitive Airport Screening Manual | Threat Level | Wired.com
    Tags: ( tsa redacting )
  3. A nice interview with Nigel Stanley discussing whitelisting.
    Winning the Malware Battle: The Move Towards Whitelisting | Optimal Security: The Lumension Blog
    Tags: ( malware whitelisting )
  4. Very nice article on VOIP and UCS attacks.
    The Forrester Blog For Security & Risk Professionals
    Tags: ( voip interception )
  5. Insider threats do exist.
    Insider Threat is Happening - Security Views - Dark Reading
    Tags: ( threat insider )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 1 comment }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Heh. This looks like a fun project.
    War-walking case << Infosanity's Blog
    Tags: ( wireless hacking )
  2. The Sophos mid-year threat report is out.
    Download Sophos Security Threat report: Jan-July 2009 | Graham Cluley's blog
    Tags: ( report threat )
  3. Trey Ford is next up in Raf's interview series. I feel lucky that so far I have met and gotten to talk with, live and in person, three of the four interviewed so far.
    Digital Soapbox - Preaching Security to the Digital Masses: 31337 Spotlight: Trey Ford
    Tags: ( interview )
  4. Lee Kushner and Mike Murray did a survey asking questions about job satisfaction in information security. Here is a bit of what they found.
    Job Satisfaction in Security | Information Security Leaders
    Tags: ( career )
  5. Part 2 of Ax0n's evil how-to is up.
    HiR Information Report: Evil WiFi Part 2: Metasploit Framework Setup
    Tags: ( wireless hacking )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Autorun is finally going to be updated to be a bit more selective in what it allows you to do with files found on removable media. I still suggest you turn it off.
    Microsoft to Change AutoPlay Behavior - Security Watch
    Tags: ( windows autorun )
  2. As usual, Didier is ready to help us with the current PDF issue. He has added a feature to disable scripts in a suspected or even a not-suspected PDF. Thanks Didier!
    Quickpost: Disarming a PDF File << Didier Stevens
    Tags: ( pdf )
  3. This in line with the recent talk about enterprises really not doing well at patching.
    The Kilo-Day threat and mundane security
    Tags: ( threats )
  4. I got a real chuckle out of this.
    12 Steps of IT Security Anonymous : The Security Catalyst
    Tags: ( general )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. An interesting set of threats to think about in 2009.
    http://www.darkreading.com/shared/printableArticle.jhtml?articleID=212700328
    Tags: ( threats )
  2. Ax0n has posted a great article. Take a read if you manage or hire "geeks."
    HiR Information Report: Open Letter from Geeks to IT Recruiters and Hiring Managers
    Tags: ( general career )
  3. RUXCON presentations are on-line now.
    RUXCON Presentations | Infosec Events
    Tags: ( conferences presentations ruxcon )
  4. Like the link title says. The audio from Blackhat Japan 2008 is available now.
    Black Hat Japan 2008 Audio | Infosec Events
    Tags: ( conferences blackhat audio 2008 japan )
  5. An interesting perspective.
    Alex Payne | Why I Don't Work In Information Security
    Tags: ( general )
  6. Richards lists the favorites of the information security related books he reviewed last year. Good stuff in there.
    TaoSecurity: Best Book Bejtlich Read in 2008
    Tags: ( books )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }