Firewalls
On Threat Intelligence Sources
March 05, 2014 Added by:Anton Chuvakin
Where does threat intelligence come from?
Comments (0)
SOHO pharming attack hit more that 300,000 devices worldwide
March 04, 2014 Added by:Pierluigi Paganini
Another mass compromise of small office/home office (SOHO) wireless routers has been uncovered by researchers from security firm Team Cymru.
Comments (0)
Congress Must Update Email Privacy Law
February 27, 2014 Added by:Electronic Frontier Foundation
A bill co-sponsored by Reps. Kevin Yoder, Tom Graves, and Jared Polis—HR 1852, The Email Privacy Act—seeks to update ECPA by requiring a probable cause warrant whenever the government wants to access your online private messages.
Comments (0)
What's The Next Reflection Attack
February 20, 2014 Added by:Alan Woodward
Two years ago we were all talking about DNS reflection attacks and the possibility that they may make an appearance. A year later they did just that, and on a massive scale.
Comments (0)
How to Make Better Threat Intelligence Out of Threat Intelligence Data?
February 19, 2014 Added by:Anton Chuvakin
One of the key uses for threat intelligence (TI) data is making better threat intelligence data out of it.
Comments (0)
On NTP Reflection DDoS: 1990s Strike Back?
February 18, 2014 Added by:Anton Chuvakin
Sure, I admire the ability of attackers to find all the opportunities for amplification DDoS. DNS – check, NTP – check, SNMP – pending… However, I definitely can not hold the the same admiration for the “defenders” (if they can be called that) who still allow spoofed packets to leave their networks.
Comments (0)
Monitoring: an Absolute Necessity (but a Dirty Word Nonetheless)
February 17, 2014 Added by:Brent Huston
There is no easier way to shut down the interest of a network security or IT administrator than to say the word "monitoring." You can just mention the word and their faces fall as if a rancid odor had suddenly entered the room! And I can’t say that I blame them.
Comments (2)
Crowd-Funding Site Kickstarter Hacked
February 17, 2014 Added by:Pierluigi Paganini
The popular crowd funding website Kickstarter is the lastest victim of a data breach.
Comments (0)
Threat Intelligence is NOT Signatures!
February 10, 2014 Added by:Anton Chuvakin
If you are receiving a list of IPs from somewhere and then blindly dropping them into your ACLs or NIPS signatures, you are not doing threat intelligence (TI).
Comments (4)
Hostname Bruteforcing on the Cheap
February 03, 2014 Added by:Rob Fuller
There are some great discussions on the NoVA Hackers mailing list. One such discussion was about what the best way to do dns hostname brute forcing was and which tool is better than another. For me, I just use the command line and then parse the results (or just ask the deepmagic.com database ;–)
Comments (0)
Why the FCC Can't Actually Save Net Neutrality
January 27, 2014 Added by:Electronic Frontier Foundation
Some people have condemned last week’s court decision to reject the bulk of the Federal Communications Commission’s (FCC) Open Internet Order as a threat to Internet innovation and openness. Others hailed it as a victory against dangerous government regulation of the Internet. Paradoxically, there is a lot of truth to both of these claims.
Comments (0)
Israeli Defense Systems Hacked with Xtreme RAT Trojan
January 27, 2014 Added by:Anthony M. Freed
The attackers used a spear-phishing email designed to look like it was sent by the country’s Shin Bet secret security service which contained a malicious attachment that infected the systems with the Xtreme RAT software, a remote access tool.
Comments (0)
Business Impact Analysis: A Good Way to Jumpstart an Information Security Program
January 27, 2014 Added by:Brent Huston
BIA (business impact analysis) is traditionally seen as part of the business continuity process. It helps organizations recognize and prioritize which information, hardware and personnel assets are crucial to the business so that proper planning for contingency situations can be undertaken.
Comments (0)
Are You Playing Security ‘Elf on the Shelf’?
December 23, 2013 Added by:Steve Lowing
While your end users may act like children from time to time, your security practices shouldn’t treat them like they are. Gain visibility and control before being placed on the naughty list.
Comments (0)
Using RRL to Prevent DNS Amplification Attacks
December 19, 2013 Added by:Allan Liska
One commonly used method of Distributed Denial of Service (DDoS) attack is a DNS Amplification attack. DNS Amplification takes advantage of the stateless nature of DNS requests to create forged DNS requests through open recursive DNS servers and directs those requests to the target of the DDoS attack.
Comments (0)
Industrial Control Industry Slow to Adopt Security Configuration Management: Survey
November 13, 2013 Added by:InfosecIsland News
Tripwire unveiled the results of a study comparing risk-based security management in the industrial sector to that of other industries.
Comments (0)
- Security Skills and Personnel Gap Creates National Security Crisis
- Android Webview Exploit Tutorial
- What Will A Russia-Ukraine Cyberwar Look Like?
- White House Cybersecurity Director Calls on Business to Help Safeguard Critical Infrastructure
- Could Your Business Survive If Everyone Telecommuted?
- NCOIC Debuts Roadmap for Designing, Managing Cyber-secure Hybrid Computing Environment
- On Threat Intelligence Sources
- How did it happen?
- SOHO pharming attack hit more that 300,000 devices worldwide
- NSA is not the Only One Getting to Your App Data