SecurityRatty: tag: isc

(ISC)2s Newest Cash Cow: The CSSLP Certification

2008-09-29 15:08:38 by Chris Eng in Zero in a bit

...ISC)2 outlined this new certification designed to appeal to application security professionals. To his credit, Mr. Tipton stated very clearly that the CSSLP is not intended to measure ones technical skillset. Unfortunately, its inevitable that employers will treat it as such You can read all the details on their website (except for the part...

Tags: csslp, csslp experience assessment, experience assessment, certification, experience, isc, personal experience, ubiquitous cissp certification, cissp

The (ISC)2 Blog

2008-05-28 09:48:21 by Tim Bass in The Complex Event Processing Blog

ISC)² is globally recognized for certifying information security professionals throughout their careers and the kind folks there have asked me to blog in information security topics.If interested, hereis the link to my posts over at the (ISC)2 blog

Tags: blog, isc, information security professionals, information security topics, link, hereis, careers, posts, folks

CISSP's - Be Prepared for Audit

2008-06-05 14:14:42 by JJ in Security Uncorked

...ISC)2 ISC)2 is taking a hard stand on CPE submissions and coming down heavy-handed on audits. If you attend an event, even if the event host is an (ISC)2 CPE-Submitter, you need to retain your proof of attendance and keep those documents on file. Generally an event host will provide a CPE audit retention sheet at the time of the event, or...

Tags: event, event hosts, event host, post-event, audit, attendance, isc, attendance sheet, time frame

Storm-Bot stripshow analysis

2007-12-23 22:06:00 by Russ McRee in HolisticInfoSec.org

...ISC reported the expected Storm surge Christmas eve at 0000 GMT hxxp://merrychristmas.com/stripshow.exe (modified to protect the innocent) yields a hash of 2BBA62FBC3B9AF85C3C7D64A82E1237C. Once executed it immediately copies itself as disnisa.exe to C:WINDOWS and adds a startup registry key for the same Current AV detection includes...

Tags: 40d9f1 connect, w32tm config syncfromflags, config, time, quick time check, w32tm config, exe, src78, dst192

Massive Coordinated Patch Effort To DNS System Flaw

2008-07-08 17:56:25 by Editor in Cheap Hack

...ISC BIND generates cryptographically weak DNS query IDs VU#927905 - BIND version 8 generates cryptographically weak DNS query identifiers The advisory lists 101 DNS servers, their status and the date of their last update. For the large majority of the servers the status is "Unknown," but several important ones are listed as Vulnerable and all...

Tags: microsoft monthly patches, microsoft, dns servers, isc bind, isc, servers, attacks, internet systems consortium, status

Massive Patch Effort Coordinated for DNS System Flaw

2008-07-08 17:56:25 by Editor in Cheap Hack

...ISC BIND generates cryptographically weak DNS query IDs VU#927905 - BIND Version 8 generates cryptographically weak DNS query identifiers The advisory lists 101 DNS servers, their status and the date of their last update. For the large majority of the servers the status is "Unknown," but several important ones are listed as Vulnerable and all...

Tags: microsoft monthly patches, microsoft, dns servers, isc bind, isc, servers, attacks, internet systems consortium, status

Massive Patch Effort Coordinated for DNS System Flaw

2008-07-08 17:56:25 by Editor in Cheap Hack

...ISC BIND generates cryptographically weak DNS query IDs VU#927905 - BIND Version 8 generates cryptographically weak DNS query identifiers The advisory lists 101 DNS servers, their status and the date of their last update. For the large majority of the servers the status is "Unknown," but several important ones are listed as Vulnerable and all...

Tags: microsoft monthly patches, microsoft, dns servers, isc bind, isc, servers, attacks, internet systems consortium, status

Debian OpenSSL Blunder

2008-05-15 09:19:37 by Editor in Cheap Hack

...ISC also makes the point that to fix the damage caused by this problem you don't just update your software, you have to recreate certificates, get them signed again, and reencrypt . Other Debian-based distributions, such as Ubuntu, are also affected; in fact, Moore has published all the keys for the Ubuntu root file system. The ISC recommends...

Tags: openssl, bit rsa keys, keys, public key, public, public keys, moore explains, moore, debian

Botnets, Fastflux and DDoS in D.C.

2007-08-25 12:10:00 by Editor in Cheap Hack

...ISC, Roger Thompson of Exploit Prevention Labs, worm maven Jose Nazario and conference organizer Gadi Evron of Beyond Security. The main focus will be on fastflux networks, fraud, DDoS and botnets. It's not a conference for pushing your products or schmoozing. The idea is to talk about real ways to fight high-level malicious activity on the...

Tags: security events, events, security, internet security operations, internet, aed conference center, conference, exploit prevention labs, roger thompson

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo