web app sec

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Shhh. It's a secret, but here are some items that evil hacker types won't tell you.
    13 Things a Web Application Attacker Won't Tell You - denimgroup's posterous
    Tags: ( webappsec )
  2. Kees points us to some free training on Incident Command Systems offered by FEMA. Worth checking out.
    Incident Response and the Incident Command System - Kees Leune
    Tags: ( incident-response )
  3. David Meier's first Securosis post is live and its a good one.
    Securosis Blog | Realistic Security
    Tags: ( security-program )
  4. Those cute little snort pigs don't make very good rockets. The VRT team proves it.
    VRT: of Pigs and Rockets
    Tags: ( humor )
  5. This malware not only steals your money, it modifies your statement so you don't know you've been stolen from. Wow.
    New Malware Re-Writes Online Bank Statements to Cover Fraud | Threat Level | Wired.com
    Tags: ( malware )
  6. Looks like Microsoft's Security Essentials does a pretty good job.
    Security Fix - Stress Testing Microsoft's Free Anti-virus Offering
    Tags: ( anti-virus anti-malware microsoft )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Ouch. Kinda glad I use wired keyboards and mice at this point 🙂
    Greg Martin's blog - InfoSecurity 2.0: Wireless Keyboard Sniffing
    Tags: ( wireless keyboard sniffing )
  2. EFF has a new tool that tracks the changes to the Terms of Service of some of the larger organization on the web like Facebook, Goggle, etc. Pretty cool.
    EFF Posts 'Terms of Service' Tracker | Threat Level | Wired.com
    Tags: ( eff )
  3. A nice article with some interesting ideas about putting things in your app that when accessed indicate you are under attack. I can think of a name for that, but it has a very unfortunate acronym, so will refrain from writing it here.
    AppSec Street Fighter - SANS Institute >> My Top 6 Honeytokens
    Tags: ( webappsec )
  4. Lori has a really good analogy for us. Take a few minutes to check it out.
    The Gluten-free Application Network
    Tags: ( webappsec )
  5. Your host isn't safe if you are using VMWare Workstation and haven't patched things like you ought to.
    Hacking Tool Lets A VM Break Out And Attack Its Host - DarkReading
    Tags: ( vmware exploit )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }