SEARCH RESULTS
 
Showing 1-8 of 8 records
1
 
Expand article

Mac Hacked in 2 Minutes, Apple is a lame patcher

2008-03-27 22:02:09 by Bill in Grumpy Security Guy
 
At the CanSec West conference Charlie Miller wins the PWN 2 OWN contest. I think these contest are kinda lame as they do not prove much, other than Charlie Miller was most likely sitting on a vulnerability waiting until the contest. I still think it is some what cool that there are people that are still interested in OS vulnerabilities Link In...
 
Tags: apple, security, leopard security concerns, lame patcher, lame, apple sadly, worst security, apple blocks, minutes
 
 
 
 
Expand article

Common Criteria and answering the question 'Is it Safe'

2007-12-20 16:57:00 by sdl in The Security Development Lifecycle
 
Hi all, Eric Bidstrup here One of the areas that our group is also involved is in industry standards regarding security assurance, and Common Criteria ( aka ISO 15408) is the standard internationally recognized by 24 governments (including the US, UK, Germany, Japan, and others). Its interesting to consider that while all consumers of computer...
 
Tags: criteria, fails, common criteria fails, common criteria, common criteria arguably, common, arguably, arguably deficient, security
 
 
 
 
Expand article

Top 10 Security Stories of 2007

2007-12-27 04:53:17 by Bill in Grumpy Security Guy
 
This is my list of the Top 10 security stories of 2007. Since I am a Web Application Security guy this list is slanted in that direction for sure. If you think something should be in my list that I missed post a comment 10. Penetration Testing Goes Prime Time - No this is not a Tiger Team fan site! I liked the show and looking forward to more...
 
Tags: top, security stories, top security stories, business, russian business network, web application security, bad guys, pci, ibm acquires watchfire
 
 
 
 
Expand article

Are Microsoft's obits premature?

The Article has images
2008-02-14 13:26:10 by HASH0x8b3bd70 in StillSecure, After All These Years
I am a child of my times (OK not quite a child anymore, but I still think of myself as a kid, don't you?). In my time there were only two evil empires, the USSR and Microsoft. I lived to see one of those empires crumble from within, but I never thought I would see both fall. I came into tech at the tail end of the Big Blue - IBM dynasty. For the...
 
Tags: microsoft, microsoft live, cast microsoft, global community, increasingly global community, evil empires, child, saas, pure saas
 
 
 
 
Expand article

Are Microsoft's obits premature?

The Article has images
2008-02-14 14:25:59 by ashimmy in StillSecure, After All These Years
I am a child of my times (OK not quite a child anymore, but I still think of myself as a kid, don't you?). In my time there were only two evil empires, the USSR and Microsoft. I lived to see one of those empires crumble from within, but I never thought I would see both fall. I came into tech at the tail end of the Big Blue - IBM dynasty. For the...
 
Tags: microsoft, microsoft live, cast microsoft, global community, increasingly global community, evil empires, child, saas, pure saas
 
 
 
 
Expand article

Dude Dont Hack My Coffee

2008-06-18 05:19:11 by Bill in Grumpy Security Guy
 
As someone trying to get off the coffee train I find the recent reports of vulnerabilities in network connected coffee machines somewhat amusing. It seems some guy tht has $2,900 to spend on a coffee maker(!!) also has the skillz to find a buffer overflow in it This type of thing is only going to increase as people slap more stuff onto the...
 
Tags: coffee, coffee train, security, security neighborhood, coffee maker, hack, grumpy security guy, attack, mass sqli attack
 
 
 
 
Expand article

Security Thoughts from TechEd 2008

2008-06-26 15:07:00 by sdl in The Security Development Lifecycle
 
Hi, this week is a post from Michael Howard and Laura Machado de Wright, who both attended and presented at TechEd 2008 in Orlando the week of June 2 nd First up is Laura I have been a Security Program Manager for the last 3 years, working as a security advisor for a variety of products across Microsoft and the last seven months as a member of...
 
Tags: security, numerous developer questions, questions, highly specific questions, requirements, security knowledge, sdl requirements, maturity, security maturity
 
 
 
 
Expand article

Spamblogs Pushing Rogue Antivirus Programs

The Article has images
2008-08-11 18:50:05 by Christopher Boyd in SpywareGuide Greynets Blog
Nothing earth-shattering, but worth a mention anyway. I've noticed a couple of blogs pushing security blog feeds are also hawking pretend Youtube vids Click to Enlarge When the videos are clicked, you'll find your browser vanishes down onto the taskbar, replaced by this sitting in the middle of the screen Once you click the popup box...
 
Tags: security, security blog feeds, rogue antivirus product, click, videos, pretend youtube vids, fake videos, scare tactics, endless barrage
 
 
 
 
 
Showing 1-8 of 8 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia