Good afternoon everybody! I hope your day is going well.
Here are today's Interesting Information Security Bits from around the web.
- The 5 year clock is about to start on Windows XP and Office 2003. They both are going into extended support status.
Windows XP and Office 2003 Enter a New Phase of Support
Tags: ( patches winxp office-2003 ) - If you want to continue to get updated DCERPC related detection capabilities with snort you are going to have to upgrade soon. Details inside.
VRT: Snort 2.8.4 is nigh
Tags: ( ids snort ) - Alex has put up his first blog post for Verizon Business. In it, he argues that PCI is not broken. I agree. I have never viewed PCI and a panacea for "securing" card data. Saying that PCI makes card data safe, is like saying that a seat belt makes a car safe. It helps, but doesn't guarantee anything.
He also points us to another resource that looks interesting, the "Information Security Management Maturity Model "
Verizon Business Security Blog >> Blog Archive >> There's nothing wrong with the PCI DSS
Tags: ( pci ) - First: This post has a really nice graphical representation of the operational Internet DNS framework (attack surfaces). Second: The final report was released from the The Global DNS Security, Stability and Resiliency Symposium. It is now on my reading pile.
>> DNS Attack Surface * Security to the Core | Arbor Networks Security
Tags: ( dns ) - You have a couple patches to install if you manage a VMWare ESX installation.
VMWare Announces New, Critical Security Updates
Tags: ( vulnerability vmware patches ) - A nice list of targets you can use to test your hacking skills. There are more in the comments.
Hacking Without All the Jailtime ha.ckers.org web application security lab
Tags: ( hacking targets )
That's it for today. Have fun!
Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.
Kevin
{ 0 comments }