|
 |
|
|
Other: Black Hat DC 2007 Presentations
|
|
"Black Hat DC 2007 Speaker Presentations are now avaible
- NAC
- Attack Patterns: Knowing Your Enemies in Order to Defeat Them.
- Secure Processors for Embedded Applications."
- Practical 10 Minute Security Audit: The Oracle Case.
- Firmware Rootkits and the Threat to the Enterprise.
- Practical Malware Analysis: Fundamental Techniques and a New Method for Malware Discovery
- Advanced Oracle Attack Techniques
- Agile Incident Response: Operating through Ongoing Confrontation
- Being Explicit about Software Weaknesses
- Device Drivers 2.0
- Data Seepage: How to Give Attackers a Roadmap to Your Network
- Botnet Tracking: Tools, Techniques, and Lessons Learned
- Beyond The CPU: Defeating Hardware Based RAM Acquisition Tools (Part I: AMD case)
- Reversing C++
- Danger From Below: The Untold Tale of Database Communication Protocol Vulnerabilities
- Smashing Web Apps: Applying Fuzzing to Web Applications and Web Services
- Exploting Similarity Between Variants to Defeat Malware
- Volatools: Integrating Volatile Memory Forensics into the Digital Investigation Process
- GS and ASLR in Windows Vista
- Web Application Incident Response and Forensics - A Whole New Ball Game!
- 360° Anomaly Based Unsupervised Intrusion Detection
Homepage: Here
|
|
Other: Fbi Can't Keep Track Of Its Own Laptops; Lose Three Or Four Each Month
|
|
Hardly a month goes by without stories of government employees losing laptops, potentially revealing all sorts of important information. Apparently it's not limited just to folks like the Census Bureau, either. A new report notes that the FBI tends to lose three to four laptops every month. Some of these are just lost, others are stolen. While some of the lost laptops contain info about people, there are also even scarier cases, such as the lost laptop that contains software used by the FBI to create its ID badges. Why that software should ever need to be on a laptop isn't explained. The only good news is that the report from the FBI suggests the rate of lost laptops is dropping (as is the number of lost weapons...), but that's hardly comforting. Yes, it's true that laptops do get lost and stolen -- but you would hope that the FBI would be a bit more careful with its sensitive info. And, if it did need to go on a laptop, why not have a system in place to protect the data on the laptop once it was lost?
Read: Here
|
|
Other: New report on Teredo security
|
|
For anyone that is interested, there is a new report available about Teredo
security
From the abstract:
Teredo is a platform-independent protocol developed by Microsoft, which is enabled by default in Windows Vista. Teredo provides a way for nodes located behind an IPv4 NAT to connect to IPv6 nodes on the Internet.
However, by tunneling IPv6 traffic over IPv4 UDP through the NAT and directly to the end node, Teredo raises some security concerns. Primary concerns include bypassing security controls, reducing defense in depth, and allowing unsolicited traffic. Additional security concerns associated with the use of Teredo include the capability of remote nodes to open the NAT for themselves, benefits to worms, ways to deny Teredo service, and the difficulty in finding all Teredo traffic to inspect.
Download: Here
|
|
Other: Critical Broadcom Windows driver exploit
|
|
The MoKB (Month of Kernel Bugs) project has released a Metasploit 3.0 kernel-level driver exploit for Broadcom based Wireless LAN devices for Windows 2000 and XP. The flaw was discovered by researcher "Johnny Cache" and had been privately disclosed to Broadcom so that they could prepare a fix before the details of the research and proof-of-concept was released in to the public.
Read it : Here
|
|
Other: Google accidentally sends out e-mail worm
|
|
Google on Tuesday inadvertently sent the Kama Sutra e-mail worm to the 50,000 subscribers of a Google Video e-mail group.
Three postings were made Tuesday evening to an e-mail list that sends out postings to the Google Video blog. "Some of these posts may have contained a virus called W32/Kapser.A@mm--a mass-mailing worm
W32/Kapser.A is better known as the Kama Sutra worm. Some antivirus companies raised an alarm about the threat in February, but it ultimately shriveled. Kama Sutra was designed to overwrite files on infected computers on a specific date. However, the worm, which spread under the guise of pornographic content, caused virtually no damage.
Read it : Here
|
| |
We received
1316256
page views since February 2005
|
| TheRegister Security Headlines |
|
Support knowledgecave & KCPentrix Via Paypal
|
|
