Security Stallions Blog "Musings of all things infosec…"

15Sep/09Off

Daily Digs – 09.15.2009

Amazing, I actually started tonight's digs before 10pm.  Then I realized that I hadn't read most of what I marked for tonight so it'll take me just as long by the time I actually get this one posted.  I just can't beat time these days!

The 'ctricky and Web Application Security' blog had a post on some great insight of things to ask during an app sec test.  I've never actually run across this particular scenario before but the point is that JS pop-up warnings mean nothing to your proxy and may present warnings that the tester will never see (like "If you do this you'll break all of prod").  Anyway, read the post for the full rundown.
[BToD Target Scope and Precautions]

VeriSign's new DDoS attack protection service is an interesting topic for me.  I've dealt with countless large enterprise carrier services along with the architecture around load balancing and multi-homed environments.  So offloading all of your traffic in an event (i.e. throwing the BGP switch) to VeriSign seems a tad bit scary, oh - but no worries they'll route the good traffic back.  The other thing is all of the Netflow data VeriSign collects (to do this) is an interesting concept.  To me, architecturally, this looks like a bad idea and maybe I'll just have to dig into this one a little more.  For now you can start your own opinions by starting to read about it at the link.
[VeriSign Extends DDoS Attack Protection]

Work in defense?  Then COTS is something you probably deal with on a daily basis.  The funny thing is that when I started my career in the defense industry a lot of proprietary hard and software were being gutted for COTS.  Even I knew (as I started out as a System Engineering Associate), that the square peg they were jamming in the round hole didn't fit.  Apparently the cyclical monster is coming around in the DOD on this one.
[DoD Rethinking Build Versus Buy]

West side what?  Go figure - China modeling how to take down the US power grid for fun.  Reminds me of a conference I was at a few years ago in which a consultant disclosed some interesting facts about the substation and grid connections the Mall of America has in it's substructure.  We then learned how to shut the lights off in all of the neighboring communities that particular day.
[DHS to Review Report on Vulnerability in West Coast Power Grid]

This was one of the best / most disturbing banking related articles I've read in a while.  It's also why you shouldn't do most any online business with HSBC.  I hope HSBC just had a PCI audit done by a large firm so that particular QSA can head to the chopping block.  This one's just downright "special" (and not really from today, but I ran across it in my feeds).
[So Funny I Forgot To Laugh]

This one came across the OSF data loss incidents list and it made me think.  Do you really think Jones General Store has any idea of PCI?  It's so focused today in big business and infrastructure security yet these types of processes still exist in hundreds of thousands of small businesses day in and day out.  In fact, this past weekend, I saw more carbon copies of card data at a local art fair than I'd care to pretend were still around.
[University Hill Shops Burglarized; Credit Cards Stolen]

As of this posting less than 19 hours until the Social Engineering Framework is released.  Mark it on your smartphone yo.
[Social Engineering: Exploiting Human Vulnerabilities]

All you need to know about this one: "Operation Hot Date", Dumb Sheriff in Florida, and Craigslist for your evening entertainment.
[Another Sheriff Goes After CL]

That's all he wrote for tonight boys and girls.  We'll leave you with some links to peruse, but without the colorful commentary.  Take care and keep your stick on the ice!  Also, first person to tweet "I won the easter egg hunt at www.securitystallions.com" and @s me in the message wins a $20 Starbucks gift card (first person = one winner).  Figuring out where to find me on Twitter should be trivial.  Get your tweet in before 10:30pm on Wednesday, September 16th 2009 Central.

[Does IBM Have a Fix for Banking Infrastructure?]
[Security Attitudes]
[Thoughts on the Cult of Schneier]
[Pwnage Tool and iPhone 3.1]
[AMD 'Eyefinity' Powers 24 Monitors]
[A BSoD and Possibly More]
[No TCP/IP Patches for XP]
[OpenDNS Announces Premium Cloud Services]

Tagged as: , , , , , , , , , , , , , , , , , No Comments
31Aug/09Off

Daily Digs – 08.31.2009

It's Monday and, unfortunately, that means August 2009 is almost behind us.  That means, for many, back to school and the end of summer.  If only I was that lucky!  It's this time of year that the cool air and soon-to-be-colorful trees remind me of those days gone by of college campus life.  Enjoy it while you can you youngins!  On to the digs...

Uh oh!  Microsoft and the Linux kernel today faced exploit code being posted to milw0rm.  Although the Microsoft vuln is, obviously, getting much more attention do your due diligence to check both out.  The Microsoft exploit affects IIS5.0/6.0 and is a remote overflow while the Linux sploit code is the local NULL pointer dereference we've seen talked about more recently.  Get 'em while they're hot!
[Linux Kernel sock_sendpage()]
[Microsoft 5.0/6.0 FTPd Remote Root]

ThreatChaos is claiming Cisco better be watching their back due to a new integrated platform 3COM has just unveiled.  Basically the claim is that routing platforms are, and have been, a commodity for years now and that integrating security functionality (not sure how firewall functionality is "new" here since all of the features listed are, and have been in high-end firewall platforms for a considerable time now) will be the new defacto standard.
[Watch out Cisco]

MacPorts, today, get's a significant point release.  1.8.0 is out on the table now with disk images out for Snow Leopard if you've done a clean install over the weekend (I did).
[MacPorts 1.8.0 Released]

The TrendLabs Malware Blog has a good rundown of info around the trojan that's targeting Skype users.  The trojan hooks the send and receive APIs so that the voice conversations can be saved before any encryption is applied.  Trend says the trojan looks to be rather tame now with regards to the fact that it's not actively sending data out today, but that doesn't mean it won't in the future either.
[Trojan Targets Skype Users]

Now I'm not a big fan of SolarWinds utilities to begin with.  Sure, over the years I've used some of their utilities but when it takes multiple megs of proprietary code to install a TFTP server one has to wonder what's really packed in there.  The products themselves are rather underwhelming and there's far better free alternatives available.  But, if you'd like to mess with that coworker that is all about SolarWinds tools tell him/her to spin up the TFTP server for you to DoS.  The PoC code is there in the links as well.
[SolarWinds TFTP Server DoS]

Saint 7.1.1 was released today with some handy new features and vulnerability checks.  Check out the Security Database Tools site for the rundown.
[Saint 7.1.1 Released]

Could that medical imaging procedure you just had pose a serious risk to your long-term health?  CNET has published that 2% of all cancers could be attributed to radiation during CT scans alone.  Scary stuff.  So should more disclosure be required to help patients make a more informed decision?
[Medical-Imaging Procedures Always Worth the Risk]

The SSA is supposedly testing Microsofts HealthVault (their online health record service).  It's one thing for a particular hospital or clinic to do this, because then I can avoid them at all costs.  The SSA on the other hand, not very avoidable.  Who's making these decisions?
[SSA Testing Microsoft HealthVault]

When in doubt, reformat.  An interesting and, rather non-technical and unscientific, reasoning behind the motto.  Interesting for the perspective alone from a typical end user.  I got the chills when reading the part about IE 6.
[When in Doubt, Reformat]

So is the Conficker worm sitting dormant until an opportune time?  John Markoff has a slightly FUDish piece up that describes the "rogue software" as a ghost ship.  Maybe it was written by the Chinese government to see how far it could infect machines deep within the confines of the Pentagon?  But maybe our own government is behind it...  What do YOU think?
[Conficker Waiting to Strike]

And that's all for the commentary tonight boys and girls.  Here's some links that are news noteworthy as well!
-windexh8er

[Best Definition Ever]
[Security Solution for Craigslist]
[St. Luke Worker Accused of Stealing CC]
[Bill Tones Down Power to Shut Web]
[Trend Launches New Security Tracking Tool]

Tagged as: , , , , , , , , , No Comments
   

Tags

Adobe announcement Apple AV Black Hat breach Cheerleader Cisco Cloud Craigslist DDoS DEFCON DHS encryption exploit Facebook forensics google Heartland IDS ie6 Intel iPhone IPv6 linux Lockpick Malware MasterCard Microsoft news OpenDNSSEC pci PIN Pirate Bay Pwnies skimmer Social Engineering SSL tools Tor Twitter Volatility wikileaks X.509 ZF05

 

September 2010
M T W T F S S
« Feb    
 12345
6789101112
13141516171819
20212223242526
27282930  

Random Musings

Previous Next

» Leave A Reply!



Twitter: windexh8er