Archive for the 'infosec' Category

« Previous Page« Previous Entries
Next Entries »Next Page »

Help: I Got Hacked. Now What Do I Do? [by Jesper M. Johansson, Security Program Manager Microsoft Corporation]

Wednesday, May 11th, 2011

Posted in hacking, infosec, management, Microsoft, reference, Security | Comments Off | permalink

Help: I Got Hacked. Now What Do I Do? [by Jesper M. Johansson, Security Program Manager Microsoft Corporation]

Wednesday, May 11th, 2011

Posted in hacking, infosec, management, Microsoft, reference, Security | Comments Off | permalink

LastPass : The last password you’ll have to remember: LastPass Security Notification

Thursday, May 5th, 2011

Online password keeping service LastPass.com reports that it is possible that they were 0wned. (how nice!) In the same time, PastPass seems to be doing the right things: they had a monitoring in place, so they have detected an anomaly in traffic. As …

Posted in blog, cloud, disclusure, hacking, infosec, lastpass, new, password, Security, shortcut:security | Comments Off | permalink

Security Incident — Blog — WordPress.com [ wordpress.com got 0wned]

Wednesday, April 13th, 2011

this is just great … at least they notified their users in a timely manner. Change your passwd if you have wordpress.com account.

Posted in hacking, infosec, password, Security, wordpress | Comments Off | permalink

A message from Comodo Hacker – Pastebin.com

Monday, April 4th, 2011

[also see LWN's write-up https://lwn.net/Articles/435214/ .] Curios message [allegedly] from a person who hacked into Comodo CA. Makes you wonder … Basically the whole SSL trust is just a piece of crap and cannot be trusted at all — major CA …

Posted in browser, hacking, infosec, internet, Security, ssl | Comments Off | permalink

How not to post a security article | John Graham-Cumming

Thursday, March 31st, 2011

an excellent follow up on a hoax story about Samsung installing keyloggers on its laptops.

Posted in article, false, infosec, media, research, Security | Comments Off | permalink

Anonymous speaks: the inside story of the HBGary hack

Wednesday, February 23rd, 2011

awesome story about how security firm HBGary was hacked, or what happens if you do not follow simple security best practices.

Posted in anonymous, bestpractices, email, hack, hacking, hbgary, infosec, password, Security | Comments Off | permalink

Black ops: how HBGary wrote backdoors for the government

Sunday, February 20th, 2011

articles describes operations of computer security firm HBGary, based on email archive of HBGary, that hacker group "Anonymous" has recently made available

Posted in anonymous, arstechnica, article, government, hacking, hbgary, infosec, malware, Security, technology, usa | Comments Off | permalink

Updated W32.Stuxnet Dossier is Available | Symantec Connect

Friday, February 18th, 2011

Stuxnet was a targeted attack on five different organizations — see the update posted by Symantec's researchers.
They have analyzed data from anti-virus software and made a graph based on IP and stuxnet version — this shows 5 different targets.

Posted in infosec, research, Security, stuxnet, symantec | Comments Off | permalink

FPUpdater Tool README

Wednesday, February 9th, 2011

curl -v -H "Accept-Language: en-us;q=2.2250738585072012e-308" http://<your tomcat server>/someurl if your tomcat/Jboss/whatver runs on unlatched JVM — the thread will go into infinite loop

also see http://blogs.oracle.com/security/…

Posted in cve, infosec, java, Security, sysadmin | Comments Off | permalink

« Previous Page« Previous Entries
Next Entries »Next Page »