NetSec
  corner   



HOME

LINUX

CYBERLAW

VIRTUALIZATION

Bugtraq

Packetstorm

FD

GrokLaw


RSS Feed


Netsec, comsec, infosec and IA news, research and trends

 

7.25.2015

 
The Hacking Team imbroglio continues to unwind. In my opinion, this is a good thing. Sunlight is the best of disinfectants.



7.21.2015

 
The same day that Wired released its article on a Jeep that was hacked and being controlled from 10 miles away, the U.S. senate proposes - The Security and Privacy in Your Car Act - SPY for short.  For new auto sales, the act would require automakers to affix a label on the car (aka "cyber dashboard") rating the car's level of security, among other things.

 
"I WAS DRIVING 70 mph on the edge of downtown St. Louis when the exploit began to take hold."

From Wired Magazine

 
The Crypto Summit and "Just say no"



7.17.2015

 
Was in need of a refresh for my snort/snorby box and came across Security Onion.  Its a linux distro "drop-in-place" IDS with some great analysis tools.  Includes Snorby, Squert, Sguil, and ELSA among other tools.  Setup was easy and it just works.  You can test the distro via a live CD and then install directly from the desktop test environment.  What a great little distro!   Too much coolness to list here.



7.10.2015

 
The Noscript misnomer - From Tarik



6.19.2015

 
Unauthorized Cross-App Resource Access on MAC OS X and iOS



5.30.2015

 
Hola VPN client vulnerabilities put millions of users at risk



5.29.2015

 
'Tox' Offers Free build-your-own Ransomware Malware Toolkit



5.24.2015

 
Logjam Attack against TLS (SSL) from Tarik



5.20.2015

 
Tech sector tells Obama encryption backdoors “undermine human rights” from Tarik



4.10.2015

 
Linux Australia gets pwned, rooted, RATted and botted



4.01.2015

 
PCI DSS Penetration Test Guidance from Tarik

 
Federal agents charged over alleged Silk Road Bitcoin theft from Joe



3.24.2015

 
Get ripped or die mining: How FitCoin can make you a BitCoin fortune at the gym



3.20.2015

 
Kali Linux NetHunter from Joe



3.13.2015

 
Details Surface on Stuxnet Patch Bypass from Joe



2.16.2015

 
Kaspersky ties Equation Group to NSA



2.06.2015

 
Anthem's stolen customer data not encrypted from Joe



2.03.2015

 
Hackers are using a one-two malware punch to penetrate corporate networks and install backdoors on corporate systems.



1.29.2015

 
NSA offers advice to enterprises confronting malware-wielding attackers


Full report here

 
The size of DDoS attacks has increased 50 times in the past decade

 
750 major data breaches in the US last year

 

Ghost, affects most Linux systems




1.28.2015

 
Bughunter cracks "absolute privacy" Blackphone - by sending it a text message



1.23.2015

 
Oracle patches a record 169 security holes across its product line from Marcus



1.22.2015

 
Cisco's Annual Security Report 2015 from Marcus



1.21.2015

 
A spy in the machine



1.10.2015

 
Lizard Stresser Runs on Hacked Home Routers from Joe



1.03.2015

 
Handy builder for country specific ACLs.

 
Japanese newspaper makes bold claim about Mt Gox's giant 2014 Bitcoin loss from Joe



12.23.2014

 
Cyberattack on German steel factory causes 'massive damage' from Joe



12.19.2014

 
Critical 'Misfortune Cookie' bug puts millions of internet-connected routers at risk from Joe



12.16.2014

 
US Congress OKs 'unprecedented' codification of warrantless surveillance - from Joe

All your SSL are belong to U.S.?

"Communications can be retained indefinitely if they have to do with foreign intelligence or counterintelligence, contain evidence of a crime, or are "enciphered" or "reasonably believed to have a secret meaning," among other conditions."



11.27.2014

 
Zen and the Art of Cloud Database Security (Part 1) from Tarik - DBs should reside on private clouds.

 
Hackers Exfiltrating Data with Video Steganography via Cloud Video Services from Tariq



11.14.2014

 
Anyone running a Windows Server should patch stat.



11.13.2014

 
Virginia Police Have Been Secretively Stockpiling Private Phone Records - Gen. Hayden states during an April debate that “We kill people... based on metadata.”



10.28.2014

 
Poodle Attacks on SSL 3.0 from Dennis





This page is powered by Blogger.


Site Meter Locations of visitors to this page