CCC-TV - 26C3: Here be Dragons (1/3)
http://media.ccc.de/browse/congress/2009/index.html Video archive for Chaos Communications Congress 2009 (CCC - a well-knows security conference )
Infosec
Understanding the TLS Renegotiation Attack - Educated Guesswork
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html explains Marsh Ray’s attack in details, pls patch to fix the TLS protocol
Electric Alchemy: Cracking Passwords in the Cloud: Breaking PGP on EC2 with EDPR
http://news.electricalchemy.net/2009/10/cracking-passwords-in-cloud.html article tells you that using elcomsoft tools, you can brute-force PGP pass-phrase in ~120 days for ~$9K on 10 EC2 instances.
[rus ]Об одном эвристическом методе детекции вирусных инжекций на сайтах / Информационная безопасность / Хабрахабр
http://habrahabr.ru/blogs/infosecurity/70615/#habracut statistical method for detection of statistical malicious javascript, perl implementation.
Tenable Network Security: Ranum's Rants - The Anatomy of Security Disasters
http://blog.tenablesecurity.com/2009/03/ranums-rants-the-anatomy-of-security-disasters.html highly recommended read for anyone dealing with security and PHBs. This is by http://en.wikipedia.org/wiki/Marcus_J._Ranum