SecurityRatty: tag: exceptions

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle

...exceptions get logged [stage 4], which tests you re-run [stage 6] and even which parsers you might decide to go after next [stage 1], etc). Below is a brief listing of each stage and its associated tasks Stage 1: Prerequisites Identifying the targets (program interfaces to fuzz Prioritizing your efforts (test planning Setting Bug Bar Stage 2:...

Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions

German Courts Rule on Spying in Cyberspace

2008-03-12 06:18:49 by schneier in Schneier on Security

...exceptions can be made if there is just cause. The judges did not feel that the blanket covert online searches that North Rhine-Westphalia's (NRW) provisions allowed fell under that category; rather, these searches were found to be a severe violation of privacy The court explained that strict legal provisions apply for covert online searches...

Tags: federal constitutional court, court, german, blanket covert online, covert online, privacy, pcs, pcs online, judges

PR Storm - Mass iFRAME Injectable Attacks

2008-03-17 17:54:21 by HASH0x8b5dc70 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...exceptions are operating within the same netblock, and continue doing so. And the exceptions? It's all a matter of perspective, whether or not you believe having a RBN hosted domain within the actual iFRAME, or the result of the iFRAME redirection in terms of importance

Tags: massive iframe attack, iframe attack, attack, attack vector, attack tactics, domains, malicious domains, malicious, sites

Web Site Defacement Groups Going Phishing

2008-04-28 01:23:00 by HASH0x88f9370 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...exceptions, those exceptions are figuring out how to vertically integrate and build the capability to participate in multiple malicious activities simultaneously

Tags: web site defacement, site, web site defacements, bamaangels, scale type, page, serve malware, underground market, malwaware authors

Laptop stolen from Minnesota Department of Commerce vendor

2007-12-29 00:01:21 by Evan Francen in The Breach Blog

...exceptions I am a Minnesota resident. This is the second breach in the past month related to an unencrypted stolen laptop for my state. The other breach concerned the Memorial Blood Centers and the disclosure that a laptop containing information belonging to 268,000 donors was stolen Past Breaches Unknown

Tags: minnesota, minnesota real estate, sensitive personal information, personal information, minnesota department, department, minnesota licensees, real, information

Stolen Wendy's laptop affects 1,092 employees

2008-01-03 14:08:27 by Evan Francen in The Breach Blog

...exceptions Evan] This is the one statement that is the most troubling to me. The letter was written by the Wendy's Chief Information Officer (CIO) and you would think that a person in this position would know without too much investigation. Information security policies must be clear and concise so that all people completely understand them....

Tags: sensitive personal information, personal information, information, information security, confidential information, information security policies, wendy, breach description, breach

Reliability Vs. Security

2007-12-07 16:46:00 by sdl in The Security Development Lifecycle

...exceptions, but with security that pain is extreme and happens over the short period of time in which the exploit runs undetected (and the subsequent recovery). With reliability, the pain is often less intense but occurs more frequently and over longer periods of time; its those annoying little bugs that waste time and force awkward...

Tags: folks, reliability folks deal, reliability, reliability folks, security, bugs, reliability bugs, reliability analysis, software reliability

My 2008 Security Predictions!

2008-01-09 15:42:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...exceptions: for example, some of the Project Honeynet academic participants deliver a punch Secure coding becomes mainstream = no (definitely, 'not yet' on this one) It pains me to say that that I think that while this ball definitely started rolling (e.g. SANS is pushing it hard now) it won't be hurtling down the highway at full speed. 2009?...

Tags: security, security predictions, broader information security, information security, smb security, virtual security appliances, security market, security solutions, security software

Sexy Development Lifecycle

2008-01-30 01:37:00 by sdl in The Security Development Lifecycle

...exceptions to this rule, but ask yourself honestly: How many people do you suppose really go to DEFCON to learn how to write secure code versus those who go to learn how to break things? Now, I love developer cons too. I always find sessions that are relevant, I always meet interesting new people and catch up with old friends, and while the...

Tags: developer security, developer security issues, security issues, developer, love developer cons, security, attend developer cons, developer cons, sdl

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo