logo

re

Category: news | Posted by Avatar Staff 280 days ago
Via: http://lists.jammed.com | Tags: re isn mayday mayday ruskies reinvent cyber crime comments Discuss  
Forwarded from: *Hobbit* <hobbit (at) avian.org>Breathless articles like this just piss me off. It isn't about whose botnet is bigger or more secretive or what its C2 protocol is. It's really about the fact that they're permitted to exist at all, let alone successfully send huge volumes of spam.If the ISPs would actually grow a pair one of these days and curtail untrusted customer netblocks full of known-infested machines from sending ANY direct SMTP traffic to anywhere but the ISP's own authorized read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 248 days ago
Via: http://lists.jammed.com | Tags: re britney spears hospital workers fired singers medical records comments Discuss  
Forwarded from: Marc Maiffret <marc (at) marcmaiffret.com>It is always funny when you hear about organizations, as critical as medical or finance, still depending on the honor system for security. Those lovely employee security handbooks that are to put to paper what you could enforce through technology. But of course there is the old tired excuse that it costs too much and is too complex to do proactive enforcement rather than reactive policing. It is in fact true that reactive policing is cheaper w read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 235 days ago
Via: http://lists.jammed.com | Tags: re spooks microsofts chief security advisor comments Discuss  
Forwarded from: security curmudgeon <jericho (at) attrition.org>: http://www.networkworld.com/news/2008/032608-microsoft-security-concerns.html:: By Bob Brown[..]: Speaking at the Boston SecureWorld conference Wednesday, the 19-year : Microsoft veteran whose job includes protecting enterprises, : developers and Microsoft itself said there actually is plenty of good : news on the security front. For example, his outfit scans a half : million devices (with customer permission) per month and in the firs read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 234 days ago
Via: http://lists.jammed.com | Tags: re advanced tactic targeted grocer comments Discuss  
Forwarded from: *Hobbit* <hobbit (at) avian.org>And has anyone bothered to ask why any point-of-sale equipment or support servers has access to the open internet in any way, shape, or form? I'm discounting a properly limited VPN back to the mothership, but really, that's the only traffic that those machines and their surrounding network environment should have been capable of carrying._H*___________________________________________________ Subscribe to InfoSec Newshttp://www.infosecnews.org/mail read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 220 days ago
Via: http://lists.jammed.com | Tags: re crack hackers comments Discuss  
Forwarded from: Jason Scott <jason (at) textfiles.com>On Mon, 14 Apr 2008, InfoSec News wrote:> http://www.itp.net/news/516118-i[...]> When asked to describe what a typical 'hacker' looks like, most people > will resort to film cliches such as Keanu Reeves from the Matrix. The > typical hacker profile is that of a dank unkempt loner who lives in a > basement lit by the harsh glow of an LCD and gleefully punches away at > a keyboard, defacing websites and leaving rude messages on des read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 220 days ago
Via: http://lists.jammed.com | Tags: re business time elevate infosec conversation comments Discuss  
Forwarded from: security curmudgeon <jericho (at) attrition.org>: http://www.informationweek.com/news/security/client/showArticle.jhtml?articleID=207100989: : By Rob Preston: InformationWeek: April 12, 2008: (From the April 14, 2008 issue): : Last year, RSA chief Art Coviello championed industry consolidation, : arguing that as a handful of major vendors (EMC, Cisco, IBM, : Microsoft) built security into their infrastructure platforms, : standalone security challengers would fall by the wayside--all read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 219 days ago
Via: http://lists.jammed.com | Tags: re acceptance growing pci security standard comments Discuss  
Forwarded from: security curmudgeon <jericho (at) attrition.org>: http://www.infoworld.com/article/08/04/10/Acceptance-growing-for-PCI-security-standard_1.html: : By Matt Hines: InfoWorld.com: April 10, 2008: : The leading man for the payment card industry's data security standard : claims that most companies affected by the mandate have begun to : embrace the regulation, rather than debate or deny its merits.Odd, based on my day job and a variety of communication with colleagues, it has been getting read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 210 days ago
Via: http://lists.jammed.com | Tags: re infosec security pros ignoring message comments Discuss  
Forwarded from: Travis Good <tgood (at) mindsecurity.net>I'm troubled at the use of the term "security pros" in this article as their "security pros" are security companies' sales and maketing folks, who generally care little about security itself, but enjoy the paychecks that selling it provides. If Kensington wasn't using this as marketing for their laptop cables, they could point out that the sales folks are also using the conference wireless and plaintext protocols to log into read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 206 days ago
Via: http://lists.jammed.com | Tags: re prediction rsa conference shrink punctured balloon comments Discuss  
Forwarded from: Fred Villella <FredVillella (at) aol.com>What Bruce exposes is accurate... "mainstreaming" IT Security. Originally, we structured the approach around the Air Force System Security Engineering and Life Cycle management concepts; where security requirements mature commensurate with the development product. More documents and designs early on.. and expanding networks and servers etc as the product matures. I recall vividly the Sprinkler enterprise.. selling sprinkler instal read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 205 days ago
Via: http://lists.jammed.com | Tags: re security vendors slam defcon virus contest comments Discuss  
Forwarded from: security curmudgeon <jericho (at) attrition.org>: http://www.infoworld.com/article/08/04/28/Security-vendors-slam-Defcon-virus-contest_1.html: : By Robert McMillan: IDG News Service: April 28, 2008: : There will be a new contest at the Defcon hacker conference this : August, one that anti-virus vendors already hate.: : Called Race-to-Zero, the contest will invite Defcon hackers to find : new ways of beating anti-virus software. Contestants will get some : sample virus code that they m read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 203 days ago
Via: http://lists.jammed.com | Tags: re security vendors slam defcon virus contest comments Discuss  
Forwarded from: Paul Ferguson <fergdawg (at) netzero.net>Cc: jericho (at) attrition.org-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1- -- security curmudgeon <