tag:blogger.com,1999:blog-75838743372613061472011-11-27T19:15:47.844-05:00The problem is what you don't know is what you don't know and what you heard me say is not what I said.Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.comBlogger1841100tag:blogger.com,1999:blog-7583874337261306147.post-91077798604314343092010-03-13T21:47:00.000-05:002010-03-13T21:47:54.048-05:00

I am watching the Redwings and the Sabers skate to a 2-2 stalemate. So I have been multi-tasking, pondering opportunities gained and those lost and decided to catch up on some of my blog reading. Reading other peoples blogs always makes me want to post to my own blog. This post is going to be the non-linear human thought that is the result of todays events and the experiences of the last week.

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-90907839948142575692010-02-25T04:50:00.001-05:002010-02-25T04:50:42.855-05:00

What are your uses cases, the chicken or the egg? I have been asked on a recurring theme what my use cases are for the security related products I am deploying.  The more I have put concerted thought to this question the more I realize that it is very much a chicken and egg proposition.  In security we are effectively trying to protect the confidentiality, integrity and availability of our

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-82457606890672581972010-02-15T21:27:00.001-05:002010-02-15T21:27:39.077-05:00

Virus Removal Is Not Fun I just spent the better part of a Sunday doing damage control. I got the call early, my eyes were open but just to imperceptible slits. It turned out that one of my machines caused my router to balk at its traffic and my customer was freaked by the message on her browser. Did we really have a problem, I hoped not, but I was relying on Microsoft Security Essentials to

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-56928010037110338252010-02-09T21:54:00.000-05:002010-02-09T21:54:59.346-05:00

Aurora Report Mission The original mission of Aurora Report was to monitor daily security news and report on the aspects of that news that was relevant to my current work situation.  Since the begining of this effort I have attempted to proliferate the global security events that are/were occuring to as many colleagues as would listen.  At times I felt quite the boy calling wolf, and yet in

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-65003302114369926212010-02-03T16:22:00.001-05:002010-02-09T09:11:57.853-05:00

Zero Day Tracking the hackers Code execution holes in iPhone OS, iPod Touch By Ryan Naraine on iPhone The most serious flaw could allow remote code execution if an iPhone/iPod Touch user opens audio and image files. Report: 48% of 22 million scanned computers infected with malware By Dancho Danchev on Viruses and Worms The recently released APWG report shows that 48% of the 22 million

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-64321828442420034792010-01-29T10:39:00.000-05:002010-01-29T10:41:00.524-05:00

Zero Day Tracking the hackers Bogus IQ test with destructive payload in the wild By Dancho Danchev on Windows Vista Researchers from ESET and BitDefender have intercepted two destructive malware variants (Win32/Zimuse.A, Win32/Zimuse.B/zipsetup.exe), posing as an IQ test, and currently spreading in the wild. Yahoo! News: Security News Security News Scammers Hop on iPad Bandwagon (

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-46762597586350538392010-01-27T09:08:00.000-05:002010-01-27T09:09:36.529-05:00

Zero Day Tracking the hackers Tor Project suffers hack attack By Ryan Naraine on Zero-day attacks Hackers broke into two of Tor Project servers and used the CPU and bandwidth to launch additional attacks. RealPlayer haunted by 11 critical vulnerabilities By Ryan Naraine on Viruses and Worms RealNetworks released an advisory to warn of the vulnerabilities, which could be exploited

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-39090055712817166042010-01-24T11:08:00.001-05:002010-01-24T11:08:50.771-05:00

Zero Day Tracking the hackers Microsoft confirms 17-year-old Windows vulnerability By Ryan Naraine on Windows Vista Microsoft warns that a malicious hacker could exploit this vulnerability to run arbitrary code in kernel mode. Following the Google attack malware trail By Ryan Naraine on People's Republic of China A researcher discovers that several components of the malware were

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-27438442705593332532010-01-15T07:28:00.001-05:002010-01-15T07:28:06.241-05:00

Zero Day Tracking the hackers Google (finally) enables default "https" access for GMail By Ryan Naraine on People's Republic of China A day after confirming a major security breach by Chinese hackers looking for GMail account information, Google has turned on default "https:" access for its popular Web mail service. Adobe plugs PDF zero-day flaw in latest security makeover By Ryan

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-60115499421501895882010-01-07T23:03:00.001-05:002010-01-07T23:03:56.471-05:00

Zero Day Tracking the hackers Adobe working on new automatic (silent) updater By Ryan Naraine on Responsible disclosure The new update will give end users an automatic download in the background and will install the updates with no user interaction option.   Yahoo! News: Security News Security News Hacker Pleads Guilty in Massive Fraud Case (PC World) In technology PC World

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-32821879127357442982009-12-24T11:58:00.001-05:002009-12-24T11:58:33.284-05:00

Zero Day Tracking the hackers Adobe plugs gaping holes in Flash Media Server By Ryan Naraine on Web Applications The patch addresses issues that allow an attacker to run malicious code on the affected system. Cisco patches critical WebEx security holes By Ryan Naraine on Zero-day attacks Cisco WebEx WRF Player vulnerable to six code execution vulnerabilities. Adobe PDF attack

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-25586173002853036852009-12-24T11:00:00.001-05:002009-12-24T11:00:18.404-05:00

Zero Day Tracking the hackers FBI: Scareware distributors stole $150M By Dancho Danchev on Web 2.0 According to an intelligence note posted by the Internet Crime Complaint Center (IC3), the FBI is aware of an estimated scareware loss to victims in excess of $150 million. Mozilla patches critical, high-risk Firefox vulnerabilities By Ryan Naraine on Vulnerability research The most

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-4095150911987244522009-12-13T12:26:00.001-05:002009-12-13T12:26:23.922-05:00

Microsoft Security Bulletins Microsoft Security Bulletins MS09-074 - Critical: Vulnerability in Microsoft Office Project Could Allow Remote Code Execution (967183) Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft Office Project. The vulnerability could allow remote code execution if a user opens a specially crafted Project

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-51421836308282461302009-12-06T12:40:00.001-05:002009-12-06T12:40:57.249-05:00

Zero Day Tracking the hackers How many people fall victim to phishing attacks? By Dancho Danchev on Spam and Phishing According to a recently released report, based on a sample of 3 million users collected over a period of 3 months, approximately 45% of the time, users submitted their login information to the phishing site they visited. SpyPhone app harvests personal data from stock

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-53244363267932049582009-11-24T10:35:00.001-05:002009-11-24T10:35:32.015-05:00

Zero Day Tracking the hackers Exploit published for critical IE 7 zero-day flaw By Ryan Naraine on Responsible disclosure The vulnerability could be used in malware attacks to take complete control of a Windows machine running IE 6 or IE 7. Inside the Google Chrome OS security model By Ryan Naraine on iPhone Google will use a combination of system hardening, process isolation,

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-27609799727138769252009-11-17T22:26:00.001-05:002009-11-17T22:26:49.736-05:00

Zero Day Tracking the hackers Thousands of web sites compromised, redirect to scareware By Dancho Danchev on Web 2.0 Security researchers have detected a massive blackhat SEO (search engine optimization) campaign consisting of over 200,000 compromised web sites, all redirecting to fake security software, commonly refered to as scareware. Microsoft confirms 'detailed' Windows 7 exploit

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-82856287018957207202009-11-10T22:17:00.001-05:002009-11-10T22:17:22.247-05:00

Microsoft Security Content: Comprehensive Edition Microsoft Security Content: Comprehensive Edition Microsoft Security Bulletin Summary for November 2009 Revision Note: Bulletin Summary published.Summary: This bulletin summary lists security bulletins released for November 2009. MS09-068 - Important: Vulnerability in Microsoft Office Word Could Allow Remote Code Execution (976307) -

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-51284586562004886922009-11-05T14:48:00.001-05:002009-11-05T14:48:44.560-05:00

Ars Technica - Security Dutch hacker holds jailbroken iPhones "hostage" for €5 (Updated) By chris.foresman@arstechnica.com (Chris Foresman) on port scanning Though jailbreaking an iPhone certainly opens up opportunities to add functionality that Apple doesn't approve of, it can also make an iPhone less secure. Several Dutch iPhone users found that out the hard way after a hacker attacked a

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-17112218561977771972009-10-28T22:17:00.001-04:002009-10-28T22:17:05.284-04:00

Ars Technica - Security Cyberattacks: Espionage now, sabotage soon By jtimmer@arstechnica.com (John Timmer) on cyberattacks In April 2009, the US National Academies of Science suggested that it was time for the US to get serious about cyberwarfare, setting official policy for its offensive use and spearheading the development of international norms governing its deployment. Less than

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-91506368502641900632009-10-22T08:13:00.001-04:002009-10-22T08:13:21.138-04:00

Ars Technica - Security 4chan prank morphs into malware attack in Kanye death hoax By jacqui@arstechnica.com (Jacqui Cheng) on scareware Fake celebrity death reports are nothing new to the Internet—a quick search shows that in just the last few years, there have been rumors spread about the death of Britney Spears, Michael Jackson (uh, before he actually died), Justin Timberlake, Will

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-40648396401683298712009-10-13T08:35:00.001-04:002009-10-13T08:35:51.533-04:00

Ars Technica - Security AntiVir, 10 others, fail Virus Bulletin's latest tests By emil.protalinski@arstechnica.com (Emil Protalinski) on Virus Bulletin Virus Bulletin (VB) conducted its latest test in August, posting the results this month. The security research company evaluated 26 anti-malware products (product submission deadline was August 22) for the 32-bit version of Windows

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-86538230245083289922009-10-04T12:54:00.001-04:002009-10-04T12:54:39.803-04:00

Symantec study: Norton beats MS Security Essentials By emil.protalinski@arstechnica.com (Emil Protalinski) on Symantec When we contacted a few antivirus makers earlier this week to find out their thoughts about the release of Microsoft Security Essentials (MSE), Redmond's free anti-malware solution, some were more prepared than others. Two were fine with Microsoft's foray into the free

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-83020003149290780152009-09-25T09:21:00.001-04:002009-09-25T09:21:27.328-04:00

Social networks make it easy for 3rd parties to identify you By jacqui@arstechnica.com (Jacqui Cheng) on Twitter By now, it's no secret that social networks (or really any websites) are sharing some of your usage data with advertising partners in order to provide more targeted ads. Most of the time, this data gets anonymized when it gets passed on so that there's no personally identifiable

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-41870027359492538582009-09-20T15:39:00.001-04:002009-09-20T15:39:09.005-04:00

CGISecurity - Website and Application Security News All things related to website, database, SDL, and application security since 2000. Microsoft publishes BinScope and MiniFuzz By Robert A. on Tools From the download pages. BinScope "BinScope is a Microsoft verification tool that analyzes binaries on a project-wide level to ensure that they have been built in compliance with Microsoft

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-76246993932401050912009-09-18T10:49:00.001-04:002009-09-18T10:49:02.687-04:00

Chrome adds defence for cross-site scripting attacks, already busted By Robert A. on XSS "The 4.0.207.0 release uses a reflective XSS filter that checks each script before it executes to check if the script appears in the request that generated the page. Should it find a match, the script will be blocked. According to Chromium developer Adam Barth, the developers plan to post an academic...

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-8100966886610760162009-09-11T23:10:00.001-04:002009-09-11T23:10:40.339-04:00

10.6.1 released with Flash fix, Leopard gets security update By chris.foresman@arstechnica.com (Chris Foresman) on update Apple has released a slew of OS updates this afternoon. Snow Leopard and Snow Leopard server get a bump to 10.6.1, including the latest Flash Player installer which caused quite a row last week. Security update 2009-005 is also available for client and server version of

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-78422798322383002972009-09-10T19:45:00.001-04:002009-09-10T19:45:03.903-04:00

Microsoft Security Advisory 975497 Released By MSRCTEAM on Zero-Day Exploit We’ve just released Microsoft released Security Advisory 975497 that provides information about a new, irresponsibly reported vulnerability in SMB 2.0. Our investigation has shown that Windows Vista, Windows Server 2008 and Windows 7 RC are affected by this vulnerability. Windows 7 RTM, Windows Server 2008 R2,

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-810551671851243672009-09-09T23:00:00.001-04:002009-09-09T23:00:17.545-04:00

MS09-049 - Critical: Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution (970710) - Version:1.0 Severity Rating: Critical - Revision Note: V1.0 (September 8, 2009): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Wireless LAN AutoConfig Service. The vulnerability could allow remote code execution if a client or

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-2043176947086940282009-09-09T22:50:00.001-04:002009-09-09T22:50:38.390-04:00

Game server admins arrested for Chinese DNS attacks By jacqui@arstechnica.com (Jacqui Cheng) on security A denial of service attack that took down Internet access in parts of China earlier this year has been attributed to an over-enthusiastic game provider trying to take down rivals. Police in Foshan, a city in Guangdong, have announced that they arrested four individuals for the attack,

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-70413722640807324562009-08-17T22:23:00.001-04:002009-08-17T22:23:19.377-04:00

An Interview with Ron Gula from Tenable about the role of a vulnerability scanner in protecting sensitive information Tenable's Ron Gula gives us an update on Nessus which now performs many of the industry standard web application tests such as SQL injection and Cross Site Scripting analysis. This, combined with Tenable's database, application and operating system configuration audits, can

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-24761257756117958042009-08-07T20:00:00.001-04:002009-08-07T20:00:30.160-04:00

Microsoft Patch Tuesday for August 2009: nine bulletins By emil.protalinski@arstechnica.com (Emil Protalinski) on Patch Tuesday According to the Microsoft Security Response Center, Microsoft will issue nine Security Bulletins on Tuesday, and it will host a webcast to address customer questions on the bulletin the following day (August 12 at 11:00am PST, if you're interested). Five of the

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-21615814909082524562009-08-07T00:10:00.001-04:002009-08-07T00:10:19.433-04:00

Exploit allows Apple keyboard ownage through firmware By jeff.smykil@gmail.com (Jeff Smykil) on security One of the Apple-related talks given at this year's Black Hat security conference dealt with keyboard firmware. Given by "KChen," the talk discussed "Reversing and Exploiting an Apple Firmware Update." While it may not seem like much on the surface, the truth quickly becomes apparent: if

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-16914253939796699342009-08-01T12:15:00.001-04:002009-08-01T12:15:26.442-04:00

iPhone/GSM phones vulnerable to SMS hacks, patch coming soon By chris.foresman@arstechnica.com (Chris Foresman) on Windows Mobile As promised, iPhone security expert Charlie Miller, along with colleague Collin Mulliner, demonstrated a vulnerability in the SMS messaging system which can ultimately lead to hacking of an iPhone. Miller and his cohorts identified similar flaws in the Android and

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-54247424764435309252009-07-30T08:40:00.001-04:002009-07-30T08:40:43.678-04:00

Congressman calls for P2P ban after sensitive data leaks By ars@lasarletter.net (Matthew Lasar) on Thomas Sydnor When he opened Wednesday's hearing on the hazards of inadvertent file sharing via peer-to-peer software, Representative Edolphus Towns (D-NY) said he was done with letting the industry solve the problem. By the end of the hearing Towns had lowered the boom, announcing that he

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-81762727630416732992009-07-23T22:45:00.001-04:002009-07-23T22:45:02.159-04:00

UAE cellular carrier rolls out spyware as a 3G "update" By jtimmer@arstechnica.com (John Timmer) on Spyware With the proliferation of ever more capable smart phones, many security experts are predicting that the cellular world will be the new malware frontier. Always-on Internet connections and direct SMS messages do provide a lot of opportunities for external parties to inject malware into

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-38395818571137829082009-07-22T22:37:00.001-04:002009-07-22T22:37:42.450-04:00

Mission possible: researchers make online text self-destruct By jtimmer@arstechnica.com (John Timmer) on Vanish As users flock to Web-based mail and social sites, more and more of their data is stored in cloud systems. As we've seen, some of that data can persist long after a user hits the delete button on it. Now, computer scientists have come up with a way to encrypt data so that it

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-5047023541725616962009-07-21T04:31:00.001-04:002009-07-21T04:31:42.516-04:00

Firefox 3.5.1 released to patch TraceMonkey vulnerability By segphault@arstechnica.com (Ryan Paul) on vulnerability Mozilla has announced the availability of Firefox 3.5.1, the first minor point release in the 3.5 series. The purpose of this release was largely to patch a critical security vulnerability that was found in the browser's new TraceMonkey JavaScript engine. Linux exploit gets

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-50484082524451413982009-07-19T23:01:00.001-04:002009-07-19T23:01:25.515-04:00

Microsoft warns of flaw in OWC, Office 2007 unaffected By emil.protalinski@arstechnica.com (Emil Protalinski) on Office Web Components Microsoft has posted Security Advisory 9737472 to warn its users that it is responding to a privately reported flaw in Microsoft Office Web Components (OWC) that hackers are actively attempting to exploit. The vulnerability could allow for an attacker to gain

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-38937129206690649572009-07-14T16:10:00.001-04:002009-07-14T16:14:39.057-04:00

Ksplice: Update computers without rebooting By segphault@arstechnica.com (Ryan Paul) on update Every enterprise wants to harden its servers and increase uptime, but security updates often require reboots. Companies that want to please their customers need a better way to apply software updates. One potential solution for Linux servers is Ksplice, which can seamlessly apply live updates while

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-28677404119353658542009-07-13T08:44:00.001-04:002009-07-13T08:44:15.084-04:00

ImageShack hacked by cyber survivalists. By Rik Ferguson on web Earlier today, the popular image hosting site ImageShack appears to have been compromised by a group calling itself Anti-Sec. The exploit was also posted to the Full Disclosure mailing list, eliciting some interesting responses. This is the same group that attacked the website of astalavista.com in June of this year.   The

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-42250134204998491622009-07-11T11:49:00.001-04:002009-07-11T11:49:12.393-04:00

Microsoft Patch Tuesday for July 2009: six bulletins By emil.protalinski@arstechnica.com (Emil Protalinski) on Patch Tuesday According to the Microsoft Security Response Center, Microsoft will issue six Security Bulletins on Tuesday, and it will host a webcast to address customer questions on the bulletin the following day (July 15 at 11:00am PST, if you're interested). Three of the

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-42077916472137616982009-07-09T09:02:00.001-04:002009-07-09T09:02:25.413-04:00

Session Attacks and ASP.NET - Part 1 By Robert A. on Vulns Sans has published part 1 of an article discussing Session Fixation attacks against .NET applications. "I’ve spent some time recently looking for updated information regarding session attacks as they apply to ASP.NET and am still not completely satisfied with how Microsoft has decided to implement session management in ASP.NET 2.0+ (

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-78233128436849252562009-07-07T10:19:00.001-04:002009-07-07T10:19:21.435-04:00

Microsoft warns of Video ActiveX flaw; Vista unaffected By emil.protalinski@arstechnica.com (Emil Protalinski) on Internet Explorer Microsoft has posted Security Advisory 972890 to warn its users that it is responding to a privately reported vulnerability in the Microsoft Video ActiveX Control that hackers are actively attempting to exploit. The vulnerability could allow for an attacker to

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-30922389228778828192009-07-05T18:25:00.001-04:002009-07-05T18:25:45.863-04:00

Apple patching critical SMS vulnerability in iPhone OS By chris.foresman@arstechnica.com (Chris Foresman) on vulnerability Security researcher Charlie Miller has revealed that Apple is working on a patch for a security flaw he identified in the iPhone's SMS implementation. The flaw can actually lead to arbitrary code execution, as he explained to Ars last month. Miller hasn't yet detailed

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-58772540209478901762009-07-04T12:47:00.001-04:002009-07-04T12:47:03.725-04:00

Apple fixing iPhone SMS security hole By Elinor Mills Apple expects to have a fix later this month for a vulnerability in the iPhone that could allow an attacker to gain control of the device remotely via SMS, a security researcher said on Thursday. An attacker could exploit a weakness in the way iPhones handle SMS (short message service) ... Waledac worm targeting July 4 spam offensive

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-24716534974372318202009-07-01T22:34:00.001-04:002009-07-01T22:34:27.921-04:00

Report: botnets sent over 80% of all June spam By jacqui@arstechnica.com (Jacqui Cheng) on spam There's a ton of spam on the Internet—we all are painfully aware of this already. However, what once required an actual person to send is increasingly being taken over by botnets. A new report (PDF) from Symantec's MessageLabs says that more than 80 percent of all spam sent today comes from

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-74843788254617381482009-06-30T07:04:00.001-04:002009-06-30T07:04:36.909-04:00

Google News Search Sorted by relevance Sort by date Sort by date with duplicates included LIGATT Security International Signs Letter of Intent to Purchase ... MarketWatch - ‎20 hours ago‎ This purchase will help assist LIGATT Security in the distribution of computer security and cyber crime products and services. ... PINK:LGTT - OTC:CYDM Cyber security minister ridiculed over s'kiddie hire

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-90263342612116564182009-06-30T06:58:00.001-04:002009-06-30T06:58:49.495-04:00

'Iceman' pleads guilty in credit card theft case By Elinor Mills Max Ray Vision, aka "Iceman," pleaded guilty on Monday to two counts of wire fraud stemming from the theft of nearly 2 million credit card numbers and $86 million in alleged fraudulent purchases. Vision faces up to 60 years ... Michael Jackon Spam/Malware – RIP The King Of Pop By Darknet on viruses For people of my age

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-25458800418989707592009-06-28T22:36:00.001-04:002009-06-28T22:36:01.557-04:00

Google News Search US Cyber Command: 404 Error, Mission Not (Yet) Found Wired News - Noah Shachtman - ‎Jun 26, 2009‎ (Another: what does a recent and classified National Intelligence Estimate on cyber security recommend.) But already, there's tough talk in and around the ... Video: Britain launches cyber-terror strategy ITN NEWS Britain says facing growing cyber security threat Reuters

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-68645297924862284692009-06-28T22:19:00.001-04:002009-06-28T22:19:38.233-04:00

Internet scareware scammers settle with FTC for $100,000 By jacqui@arstechnica.com (Jacqui Cheng) on security The Federal Trade Commission has settled a case involving two scareware scammers. The settlement will relieve the two defendants of having to fork over almost $1.9 million as part of a judgment made against them, but will still require them to forfeit $116,697 in assets to the FTC.

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-67856020088873715012009-06-24T18:39:00.001-04:002009-06-24T18:39:05.371-04:00

Google NEWS Search Seattle Post Intelligencer Military Command Is Created for Cyber Security Wall Street Journal - Siobhan Gorman, Yochi Dreazen - ‎22 hours ago‎ Maren Leed, a cyber-security expert at the Center for Strategic and International Studies, said the military's closed computer networks could make it easier ... Gates Creates Cyber-Defense Command Washington Post Its Official!

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-45791958253832882402009-06-24T18:29:00.001-04:002009-06-24T18:29:06.180-04:00

China not backing off despite filter code post on Wikileaks By jacqui@arstechnica.com (Jacqui Cheng) on security China is filtering out criticism and diving in headfirst with its plan to roll out controversial filtering software on all PCs sold in China. The Chinese media quoted an unnamed source inside the Ministry of Industry and Information Technology, saying that the software will still

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-82772442662906417692009-06-24T08:40:00.001-04:002009-06-24T08:40:48.909-04:00

New Facebook blog: We can hack into your profile By Caroline McCarthy Well, here's an innovative way to get some buzz: FBHive, a new blog devoted to the discussion of all things Facebook, has debuted with the revelation that its creators have discovered a hack that can expose some crucial profile data. No, it won't expose your personal photos or ... Originally posted at The Social Q&A:

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-4100709393314364822009-06-22T09:25:00.001-04:002009-06-22T09:25:00.341-04:00

Apache HTTP DoS tool mitigation, (Sun, Jun 21st) If you've been following our diaries or any other IT Security related news, you probably know about ...(more)... Situational Awareness: Spam Crisis and China, (Sat, Jun 20th) Gary Warner, Director of Research at the UAB Computer Forensics, posted a very interesting analysis ...(more)... G'day from Sansfire2009, (Sat, Jun 20th) Well

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-78693448050099829422009-06-20T08:45:00.001-04:002009-06-20T08:45:46.597-04:00

iPhone OS 3.0 patches 46 known security vulnerabilities By chris.foresman@arstechnica.com (Chris Foresman) on software Earlier this week we spoke with security researcher Charlie Miller, who plans to detail a possible method that could allow a hacker to remotely execute arbitrary code on an iPhone. He noted that his method would need to be combined with an exploit of a known vulnerability in

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-55180768519639937792009-06-19T10:59:00.001-04:002009-06-19T10:59:51.647-04:00

Microsoft announces free antivirus, limited public beta By emil.protalinski@arstechnica.com (Emil Protalinski) on Microsoft Security Essentials Microsoft today officially announced Microsoft Security Essentials (MSE), its free, real-time consumer antimalware solution for fighting viruses, spyware, rootkits, and trojans. Currently being tested by Microsoft employees and a select few testers,

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-77785481754097974042009-06-18T09:19:00.001-04:002009-06-18T09:19:45.007-04:00

Leaked: screenshots of Morro, Microsoft's free antivirus By emil.protalinski@arstechnica.com (Emil Protalinski) on Morro Morro is the codename for a free, real-time antimalware solution for consumers to be released in the second half of 2009. It will offer basic features for fighting viruses, spyware, rootkits, and trojans. Microsoft is getting ready to put Morro into testing over the next

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-87935105451239431122009-06-16T09:49:00.001-04:002009-06-16T09:50:00.044-04:00

Apple finally issues patch for "critical" Java vulnerability By jacqui@arstechnica.com (Jacqui Cheng) on vulnerability Apple has finally issued a patch for a critical Java vulnerability in Mac OS X that made headlines last month. The update comes as part of Java for Mac OS X 10.5 Update 4, a 158MB download from both Apple's website and Software Update and requires Mac OS X 10.5.7. According

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-51951701364434325592009-06-15T09:37:00.001-04:002009-06-15T09:37:08.263-04:00

IT staff snooping HR and layoff lists, taking data with them By jacqui@arstechnica.com (Jacqui Cheng) on sysadmin It's no secret that the IT staff can see things like your on-the-job porn surfing habits, your e-mail exchanges, and whatever else you're doing on your PC during work hours. But, according to a new report by Cyber-Ark Software, the IT department may be snooping a little deeper

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-73742380627082105392009-06-12T15:48:00.001-04:002009-06-12T15:48:22.601-04:00

Forefront Threat Management Gateway Beta 3 arrives By emil.protalinski@arstechnica.com (Emil Protalinski) on Microsoft Forefront Microsoft Forefront Threat Management Gateway (TMG) is a secure Web gateway that helps protect corporate assets and employees from Web threats while also delivering unified perimeter security to protect networks from attack. Beta 3 of Forefront TMG is available for

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-66261565365456864542009-06-10T10:20:00.001-04:002009-06-10T10:20:13.808-04:00

Microsoft Security Bulletin Summary for June 2009 By Robert A. Patch Tuesday is here again. Here's the rundown of what was fixed. MS09-018 Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055) This security update resolves two privately reported vulnerabilities in implementations of Active Directory on Microsoft Windows 2000 Server and Windows Server 2003, and Active

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-84468671592291113502009-06-09T09:39:00.001-04:002009-06-09T09:39:34.767-04:00

Twitter user says vacation tweets led to burglary By Elinor Mills Twitter user's tweets revealed he was out of town. Did that tip off a burglar? Here's either a cautionary tale or an example of social-media paranoia. An Arizona man believes that his Twitter messages about going out of town led to a burglary at his ... T-Mobile investigates possible security breach By Marguerite Reardon

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-56627682049732954702009-06-08T12:40:00.001-04:002009-06-08T12:40:25.560-04:00

When XSS can cost you $10,000 By Robert A. on XSS "Did you hear the one about the hacker-free e-mail service that was so confident about its enhanced security measure that it offered up $10,000 to anyone who could hack into it? It got hacked. Here’s the part that’s really crazy, though. There was initially some question as to whether or not... Astalavista.com hacked By Robert A. on

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-29142806737771485182009-06-05T11:21:00.001-04:002009-06-05T11:21:43.161-04:00

Microsoft Patch Tuesday for June 2009: 10 bulletins By emil.protalinski@arstechnica.com (Emil Protalinski) on Patch Tuesday According to the Microsoft Security Response Center, Microsoft will issue 10 Security Bulletins on Tuesday, and it will host a webcast to address customer questions on the bulletin the following day (June 10 at 11:00am PST, if you're interested). Six of the

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-37872130274510424172009-06-03T13:25:00.001-04:002009-06-03T13:25:41.316-04:00

Report: Mass Injection Attack Affects 40,000 Websites By Robert A. on IndustryNews "Researchers at Websense have discovered a mass injection attack that is redirecting Web browsers to a malware-bearing site. According to a weekend report by researchers at Websense, thousands of legitimate Web sites have been discovered to be injected with malicious Javascript, obfuscated code that leads to

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-20789471380768181882009-06-02T10:42:00.001-04:002009-06-02T10:42:29.281-04:00

AV-Comparatives May 2009 report: three winners By emil.protalinski@arstechnica.com (Emil Protalinski) on Av-Comparatives AV-Comparatives is known for the thorough tests it does on security software. Following its February 2009 on-demand report, the company has released its May 2009 retrospective/proactive test. It is the second part of the previous report: the same 16 products (Command

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-65632958154670798432009-06-01T08:38:00.001-04:002009-06-01T08:38:24.988-04:00

Microsoft warns of DirectX flaw; Vista users unaffected By emil.protalinski@arstechnica.com (Emil Protalinski) on Windows XP Microsoft has posted Security Advisory 971778 to warn its users that it is investigating public reports of a new vulnerability in Microsoft DirectX (versions 7.0 through 9.0) that hackers are actively exploiting. The vulnerability could allow for remote code execution

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-6844772015482386362009-05-29T13:53:00.001-04:002009-05-29T13:53:52.135-04:00

Experts: Gumblar attack is alive, worse than Conficker By Elinor Mills The Web site compromise attack known as Gumblar has added new domain names that are downloading malware onto unsuspecting computers, stealing FTP credentials to compromise more sites, and tampering with Web traffic, a security firm said on Thursday. The Gumblar attack started in March with Web sites being compromised and

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-31245352223415967292009-05-28T15:53:00.001-04:002009-05-28T15:53:53.443-04:00

Report: spam-wielding botnets are working 9 to 5 By jacqui@arstechnica.com (Jacqui Cheng) on Symantec Spam levels have risen over the past month to more than 90 percent of all corporate e-mail, according to Symantec’s May 2009 MessageLabs Intelligence Report (PDF). The latest report effectively communicates the concept of "spam, boy there sure is a lot of it," but goes into detail about the

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-91134204920454851472009-05-27T09:54:00.001-04:002009-05-27T09:54:50.672-04:00

Report: Spam now 90 percent of all e-mail By Lance Whitney Spam now accounts for 90.4 percent of all e-mail, according to a report released Monday from security vendor Symantec. This means that 1 out of every 1.1 e-mails is junk. The report also notes that spam shot up 5.1 percent just from April to May. Spam on ... Obama To Create Cyber Security Czar In White House By Darknet on

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-18760466394740994962009-05-26T08:49:00.001-04:002009-05-26T08:49:54.408-04:00

Technitium FREE MAC Address Changer v5 R2 Released for Windows By Darknet on windows 7 rc It’s been a while since the last update of Technitium back in June 2008, the latest release is v5 R2 with support for Windows 7 RC. Technitium MAC Address Changer allows you to change Media Access Control (MAC) Address of your Network Interface Card (NIC) irrespective to your NIC manufacturer or its

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-53797011468993884742009-05-25T08:55:00.001-04:002009-05-25T08:55:38.994-04:00

—Happy Memorial Day! Semper Fi! Orange.fr compromised - 245,000 clear text passwords exposed? By Rik Ferguson on SQL Injection Treat your password like your toothbrush, don’t let anyone else use it and change it every six months. (Clifford Stoll)   It looks like HackersBlog have come out of retirement, and with a bang. (see here for an earlier interview I did with HackersBlog)   They have

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-91444544956382850952009-05-23T09:49:00.001-04:002009-05-23T09:49:58.942-04:00

Compromising web content served over SSL via malicious proxies By Robert A. on Vulns Microsoft research has published an excellent paper describing many browser flaws. The use case primary involves an attacker hijacking the explicitly configured proxy used by the user and via HTTP code trickery they can access the content on an HTTPS established connection. It also outlines browser flaws

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-15348193810572270892009-05-22T09:56:00.001-04:002009-05-22T10:09:33.574-04:00

Microsoft cleans password stealer tools from 859,842 PCs By emil.protalinski@arstechnica.com (Emil Protalinski) on malware The Malicious Software Removal Tool (MSRT) is a small program Microsoft pushes out to computers on Patch Tuesday to clean out a list of malware. Each month, the company adds removal information for more threats. On this month's Patch Tuesday, Microsoft added scans for

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-50286332618873414262009-05-21T16:40:00.001-04:002009-05-21T16:40:17.739-04:00

Apple has yet to patch "critical" Java vulnerability By chris.foresman@arstechnica.com (Chris Foresman) on web browser Mac OS X contains a serious security vulnerability in its implementation of Java, according to several security experts. The vulnerability remains in the software even after Sun had disclosed and patched the problem and Apple had been notified of the issue by at least one

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-73860258725070060882009-05-20T08:52:00.001-04:002009-05-20T08:52:58.941-04:00

Password reminders: hard to remember, but easy to hack By jtimmer@arstechnica.com (John Timmer) on web Forgetting which password you used for a rarely used shopping site can be a pain, one that's often made worse by the fallback authentication method. If you're like me, you're often stumped by which of your past pets you considered your favorite two years ago, or whether you put a "the" in

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-10261163741888658932009-05-19T15:15:00.001-04:002009-05-19T15:15:38.307-04:00

IIS6.0 WebDav Unicode Remote Auth Bypass By Robert A. on Vulns Update: Microsoft has posted some additional information in multiple entries. A new unicode bug in IIS has been discovered which allows an attacker access to resources behind password protected sites. This issue only seems to affect IIS 6 (5 and 7 seem immune) and no fix has been issued at this... Microsoft warns of new

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-27039800585041431792009-05-18T10:42:00.001-04:002009-05-18T10:42:05.576-04:00

Hackers crack flight sim community site, ruin it for everyone By chris.foresman@arstechnica.com (Chris Foresman) on hackers A website for flight simulator enthusiasts, originally launched in 1996, has been essentially "destroyed" by the shenanigans of hackers. Avsim had become an important resource for flight sim users over the last 13 years, but the site has been completely shut down after

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-17400761645701742462009-05-16T11:00:00.001-04:002009-05-16T11:00:39.340-04:00

Microsoft bans Memcpy() in their SDL program By Robert A. on Security Tools "Memcpy() and brethren, your days are numbered. At least in development shops that aspire to secure coding. Microsoft plans to formally banish the popular programming function that's been responsible for an untold number of security vulnerabilities over the years, not just in Windows but in countless other

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-18867555714314539182009-05-15T09:18:00.001-04:002009-05-15T09:18:03.466-04:00

Analyst: cyberwarfare arms race with China imminent By segphault@arstechnica.com (Ryan Paul) on security A congressional commission that reviews economic and security relations between the United States and China held a hearing last month on Chinese intelligence activities that impact national security. During this hearing, security expert Kevin G. Coleman of the Technolytics Institute think

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-88340923538554226682009-05-11T19:56:00.001-04:002009-05-11T19:58:26.964-04:00

Researchers: image spam making unexpected return By jacqui@arstechnica.com (Jacqui Cheng) on study Don't call it a comeback, but image-based spam is on the rise once again after hitting near-extinction late last year. Ralf Iffert and Holly Stewart of IBM's X-Force team detailed the phenomenon in a blog post last week, noting that the techniques used in the latest waves of image spam aren't

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-7143027098757809812009-05-10T08:52:00.001-04:002009-05-10T08:52:57.924-04:00

Botnet master hits the kill switch, takes down 100,000 PCs By jacqui@arstechnica.com (Jacqui Cheng) on Zeus Botnets aren't just dangerous because they can steal massive amounts of personal data and launch denial-of-service attacks—they can also self-destruct, leaving the owners of affected machines in the dust. The controllers of one such botnet recently hit the kill switch for one reason or

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-74924930031857815752009-05-10T07:41:00.001-04:002009-05-10T07:41:41.844-04:00

  MisCellany Engadget Gizmodo Aurora Report imagenique Slate Magazine New Urban Legends Dilbert Daily Strip Slow Down Fast Personal Coaching and Lifestyle Design Zen Habits TekNoLog Wired Top Stories PC Magazine Tips and Solutions PC World Latest Technology News SANS

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-669689096293885902009-05-08T10:50:00.001-04:002009-05-08T10:50:32.524-04:00

Firefox, Chrome users more up to date than Safari and Opera By jacqui@arstechnica.com (Jacqui Cheng) on vulnerability Those who use Firefox and Chrome are inherently more up-to-date—and therefore more secure—than those who run Safari and Opera, according to researchers from the Swiss Federal Institute of Technology (ETH Zurich) and Google Switzerland. But it's not the browsers themselves

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-30254610581420245282009-05-07T07:28:00.001-04:002009-05-07T07:28:45.682-04:00

Swede charged in cisco hack involving theft of trade secrets By Robert A. on IndustryNews "A 21-year-old Swede has been charged with hacking into Cisco Systems Inc. (NASDAQ:CSCO)'s computers and stealing trade secrets, U.S. officials say. Philip Gabriel Pettersson, also known as "Stakkato," was named in a five-count indictment that includes one count of intrusion and two of trade secret

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-1246197716525519062009-05-06T06:48:00.001-04:002009-05-06T06:48:04.157-04:00

Hackers Break Into Virginia Health Professions Database, Demand Ransom By Robert A. on IndustryNews "Hackers last week broke into a Virginia state Web site used by pharmacists to track prescription drug abuse. They deleted records on more than 8 million patients and replaced the site's homepage with a ransom note demanding $10 million for the return of the records, according to a posting on

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-4027361466704072622009-05-05T08:22:00.001-04:002009-05-05T08:22:19.193-04:00

Researchers hijack botnet, score 56,000 passwords in an hour By jacqui@arstechnica.com (Jacqui Cheng) on Trojan Researchers at the University of California Santa Barbara have published a paper (PDF) detailing their findings after hijacking a botnet for ten days earlier this year. Among other things, the researchers were able to collect 70GB of data that the bots stole from users, including

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-79186054200293171992009-05-02T19:23:00.001-04:002009-05-02T19:23:26.201-04:00

Twitter hacked again.... By Robert A. on IndustryNews Twitter has been hacked again and had it's administrative panel (which shouldn't be web accessible) breached. "This week, unauthorized access to Twitter was gained by an outside party. Our initial security reviews and investigations indicate that no account information was altered or removed in any way. However, we discovered that 10...

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-90203126520532907262009-04-29T06:26:00.001-04:002009-04-29T06:26:11.382-04:00

Finovate: Privacy is dead, long live the PIN By Josh Lowensohn What's something we often use for security in the real world but not online? PIN codes. We use them at stores, banks, and ATMs, so why not use them online? For one, a QWERTY keyboard lets you create a much stronger, and often easier-to-remember password than you could with ... Originally posted at Webware Microsoft tightens

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-5703752320513174942009-04-28T08:23:00.001-04:002009-04-28T08:23:44.235-04:00

SB09-117: Vulnerability Summary for the Week of April 20, 2009 Vulnerability Summary for the Week of April 20, 2009 Google Chrome Universal XSS Vulnerability By Robert A. on XSS "During unrelated research, I came across a number of security issues that reside in various parts of Google's web browser - Google Chrome. These issues pose a major threat to any user that browses a maliciously

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-26557770437540783882009-04-27T07:56:00.001-04:002009-04-27T07:56:01.241-04:00

RSA 2009: A yawner at best By Jon Oltsik In my humble opinion, the RSA 2009 security conference, held this week in San Francisco, was extremely flat compared with past years. Yes, the economy had a lot to do with it. I believe last year's attendance was around 17,000 people, and I've heard that this year ... Salma Hayek’s Email Account Hacked. By Rik Ferguson on Salma Hayek   The

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-36442598684731507042009-04-24T08:42:00.001-04:002009-04-24T08:42:42.787-04:00

OAuth Session Fixation Security Flaw Discovered By Robert A. on Vulns From the advisory "The attack starts with the attacker logging into an account he owns at the (honest) Consumer site. The attacker initiates the OAuth authorization process but rather than follow the redirect from the Consumer to obtain authorization, the attacker instead saves the authorization request URI (which includes

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-49832419500460213452009-04-23T07:13:00.002-04:002009-04-23T07:43:15.227-04:00

Understanding Microsoft's Secure Remote Access OfferingsBy tshinder@tacteam.net (Thomas Shinder) The secure remote access options currently available to Microsoft networks.Database Sizing Charts for vSphere 4.0By vmtn@vmware.com (VMTN) on VMTN Blogs Many of our customers have databases running on proprietary hardware that is approaching end of life. Often these databases are not considered as

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-84917972479989766322009-04-21T07:00:00.002-04:002009-04-23T07:42:52.125-04:00

SB09-110: Vulnerability Summary for the Week of April 13, 2009Vulnerability Summary for the Week of April 13, 2009Security Bulletin Webcast Questions and Answers - April 2009By MSRCTEAM on Webcast Q&A Hi, During this month’s webcast we were able to address 15 questions in the time allotted, but have included the additional questions asked in this QA post. Most of the questions centered on the

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-41578195605961477892009-04-20T06:57:00.002-04:002009-04-23T07:42:02.724-04:00

Providing Accurate Risk Assessments , (Sun, Apr 19th)Normal 0 false false false MicrosoftInternetExplorer4 ...(more)...Twitter Packet Challenge Solution, (Sat, Apr 18th)Yesterday, I posted the packet below as my twitter feed to see how the packet skills are among my fo ...(more)... FBI CIPAV Spyware Snaring Extortionists and Hackers for Years (CGISecurity.com)CVE-2009-1324 (asxtomp3converter) (

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-44088961040829198972009-04-18T00:41:00.001-04:002009-04-18T00:41:06.997-04:00

Microsoft Security Advisory (969136): Vulnerability in Microsoft Office PowerPoint Could Allow Remote Code Execution Revision Note: Advisory publishedSummary: Microsoft is investigating new reports of a vulnerability in Microsoft Office PowerPoint that could allow remote code execution if a user opens a specially crafted PowerPoint file. At this time, we are aware only of limited and targeted

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-88316231611627999452009-04-14T23:16:00.001-04:002009-04-14T23:16:23.524-04:00

MS09-016 - Important: Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial of Service (961759) - Version:1.0 Severity Rating: Important - Revision Note: Bulletin published.Summary: This security update resolves a privately reported vulnerability and a publicly disclosed vulnerability in Microsoft Internet Security and

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-41765661024510999922009-04-12T22:31:00.001-04:002009-04-12T22:31:18.308-04:00

Microsoft Security Bulletin Advance Notification for April 2009 Revision Note: Advance Notification published.Summary: This bulletin summary lists security bulletins released for April 2009 My recent alerts from HP - Advisory: Run the threat removal tool if you have the Conficker worm virus! Virus Threat: Conficker; Advisory: Run the threat removal tool if you have the Conficker worm virus!

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-66586275525560382822009-04-10T09:08:00.001-04:002009-04-10T09:15:49.309-04:00

Microsoft Security Bulletin Advance Notification for April 2009 Revision Note: Advance Notification published.Summary: This advance notification lists security bulletins to be released for April 2009. Conficker.E By MSRCTEAM We’ve seen some activity in the Conficker space in the past two days and this has caused some questions from customers. Specifically, there have been reports of two

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0tag:blogger.com,1999:blog-7583874337261306147.post-11388046528279867382009-04-09T08:15:00.001-04:002009-04-09T08:15:42.165-04:00

New Downad/Conficker variant spreading over P2P By Rik Ferguson on worm_downad TrendLabs researcher Ivan Macalintal has this evening discovered a new variant of Downad/Conficker called WORM_DOWNAD.E spreading over the peer-to-peer functionality of the previous version of this now infamous worm. As well as reactivating the original propogation functionality, this new variant sheds some extra

Jayson Cavendishhttp://www.blogger.com/profile/01935196570713592495noreply@blogger.com0