Around The Horn vol.1,42

Alerts

SB09-047: Vulnerability Summary for the Week of February 9, 2009

from US-CERT Cyber Security Bulletins
Vulnerability Summary for the Week of February 9, 2009

1:20 PM (6 hours ago)
Internet Routing Issues, (Mon, Feb 16th)

from SANS Internet Storm Center, InfoCON: green
Several readers have reported difficulty in reaching parts of the Internet today. The source o ...(more)...

10:04 PM (8 hours ago)
McAfee 2009 Mobile Security Report, (Tue, Feb 17th)

from SANS Internet Storm Center, InfoCON: green
We received notice of the 2009 McAfee Mobile Security Report today from our fellow SANS collegues, s ...(more)...

Security News

12:28 PM (7 hours ago)
Obama's BlackBerry still hackable, warns Mitnick

from The Register - Security
You'd be a nut to try and crack it
President Obama's 'bullet-proof' BlackBerry might still be cracked, according to uber-hacker Kevin Mitnick.…

2:29 PM (5 hours ago)
Hackers: BitDefender site exposes private data (yet again)

from The Register - Security
Second time in seven days
Updated Romanian hackers have discovered a security flaw in the website of anti-virus provider BitDefender. They said it was the second time in a week the company has inadvertently exposed a database that is supposed to remain private.…

12:21 AM (6 hours ago)
DShield Web Honeypot - Alpha Preview Release, (Tue, Feb 17th)

from SANS Internet Storm Center, InfoCON: green
The attack dynamics had significantly changed since DShield went into service 8 years ago. Web attac ...(more)...

9:03 PM (9 hours ago)
MS09-002 - Critical: Cumulative Security Update for Internet Explorer (961260) - Version:1.1

from Microsoft Security Content: Comprehensive Edition
Severity Rating: Critical - Revision Note: V1.1 (February 16, 2009): Added a link to Microsoft Knowledge Base Article 961260 under Known Issues in the Executive Summary.Summary: This security update resolves two privately reported vulnerabilities. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

6:32 AM (8 minutes ago)
UK childcare voucher site offline after security snafu

from The Register - Security
Busy Bees stung by breach
A UK childcare voucher scheme has admitted that confidential customer data was briefly left exposed to other users during an upgrade last week, but denied suggestions that any sensitive information leaked as a result.…

12:30 AM (6 hours ago)
Satellite-hacking boffin sees the unseeable

from The Register - Security
Lady Di gossip plucked from sky
White-hat hacker Adam Laurie knows better than to think email, video-on-demand, and other content from Sky Broadcasting and other satellite TV providers is a private matter between him and the company. That's because he's spent the past decade monitoring satellite feeds and the vast amount of private information they leak to anyone with a dish.…

11:30 PM (7 hours ago)
MySQL daddy juices Finnish security firm

from The Register - Security
Wot? A SQL injection of cash?
MySQL creator Michael "Monty" Widenius is injecting some venture capital and executive experience into a Finnish firm that makes a community-driven security add-on for browsers.…

5:02 AM (1 hour ago)
NSA Together With Mitre CWE and SANS Identifies Top 25 Programming Errors

from Darknet - The Darkside by Darknet
Secure programming is a huge issue and it’s the lack of it that causes all the problems we have with vulnerabilities and the exploits associated with them. If everywhere developers followed secure programming practices we wouldn’t have buffer overflow issues or unsanitized parameters leading to SQL Injection. The NSA (National Security...

-- Aurora Report says well it has been a relatively quiet few days and we hope we are not missing anything. For now we are content to enjoy the relative solace the quietude embues. We made several changes to the blog today so we'll see how it goes over.

-- Updated 2/17/2009 still pretty quite on the western front added 6 security interest pieces 1 sorta new alert.