SEARCH RESULTS
 
Showing 1-10 of 19 records
 
Expand article

Playing With Homemade Explosives

2007-08-07 17:30:00 by Eric Marvets in The Security Samurai
 
After reading Bruce Schneier s interview with TSA Administrator Kip Hawley I started thinking of all the explosives used in recent terrorist plots and how silly they were. As a kid, I loved going into the woods and playing with all sorts of dangerous stuff which of course included fireworks, gas cans, hair spray, propane tanks, etc. What I...
 
Tags: gas, lawn mowers gas, tank, cars gas tank, time, time delay fuse, terrorist, empty gas, recent terrorist plots
 
 
 
 
Expand article

Vulnerability Bazaar

2008-01-07 09:15:52 by Editor in IEEE Security and Privacy
 
The commoditization of bugs is a long-standing tradition in the software industry. It started when companies began offering a cash incentive for each critical bug a developer squashed. This practice of attaching intrinsic monetary value to bugs is the spiritual predecessor of the "pure" vulnerability markets that this article discusses
 
Tags: vulnerability markets, bugs, software industry, critical bug, intrinsic monetary, spiritual predecessor, cash incentive, article discusses, pure
 
 
 
 
Expand article

Windows Live OneCare has a Broken Light

The Article has images
2008-01-16 04:27:00 by Keith Brown in Security Briefs
My continuing saga using Windows Live OneCare Like most security products, this one puts an icon in the taskbar. This one glows green if everything is OK, yellow if there's somthing minor wrong, or red if there's something really wrong. For example, it'll glow red while your firewall is disabled By the way, that's one thing I really like about...
 
Tags: onecare, windows, windows live onecare, contact onecare support, onecare dashboard, light, wrong, firewall, replacement firewall
 
 
 
 
Expand article

Got advertisement? Maybe you should shout your PCI compliance from the rooftops!

2007-11-30 14:57:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
Will advertising the fact that you are PCI compliant make you more of a target? I dont believe so Heres why. Its no longer the proverbial pimply-faced kid who is hacking into the company. It is organized crime that is doing so. And what do these guys want? Money, pure and simple - and from sensitive information such as cardholder data. They are...
 
Tags: data, card data, data safe, customer data, pci compliance, pci compliant, consumers care, consumers, cardholder data
 
 
 
 
Expand article

Marathon County, Wisconsin Purchase Card Program breach

The Article has images
2008-03-06 11:40:55 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 2/27/08 Organization Marathon County, Wisconsin Contractor/Consultant/Branch None Victims County employees Number Affected 270 Types of Data Names, Social Security numbers, and dates of birth Breach Description Marathon County officials inadvertently sent a file containing personal information...
 
Tags: county, breach, marathon county, employees, county employees, information breach, wisconsin, breach description, purchase card administrator
 
 
 
 
Expand article

Loads.cc's DDoS for Hire Service

The Article has images
2008-03-11 21:35:53 by HASH0x8b581c0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
Snakes never whisper in one another's ear - it's supposed to tickle. In a blog post yesterday, Sunbelt Labs pointed out on the re-emergence of the Botnet on Demand Service that I covered last year. It's great to see we're on the same page, or wiki article as we can always expand the discussion. In need of more such fancy snakes admin panels...
 
Tags: ddos, service, malware, services, hire services, web based malware, undercover ddos, loads, country
 
 
 
 
Expand article

Stiennon wants to know - it is all about execution

2008-03-21 01:15:44 by HASH0x8b48134 in StillSecure, After All These Years
 
As some of you may know Richard Stiennon and I have had our disagreements over the years around NAC. But say what you want about Rich, at least he had the stones to ask what many of you would probably like to ask but wouldn't. Here is Rich's comment and my reply Posted by Stiennon: OK, so one well regarded security company turns out not to be...
 
Tags: stiennon, nac, richard nac, ignorant, ignorant richard, richard, richard stiennon, top richard, nac companies
 
 
 
 
Expand article

Seven Years of Wi-Fi Networking News

The Article has images
2008-04-04 15:10:45 by Glennf in Wi-Fi Networking News
It's hard for me to believe this, but Wi-Fi Networking News is seven years old on Sunday, 6 April 2008: Folks, there are times when I feel a little bit aged. Turning 40 a couple weeks ago didn't give me that feeling. Have two children (1 and 3 2/3) has a bit (mostly when I'm achey from too much carrying and too little sleep). But finding that my...
 
Tags: wi-fi, wi-fi hotspot giant, municipal wi-fi, wi-fi signal finder, wi-fi world, world, 11b-later-wi-fi site, 11b, news
 
 
 
 
Expand article

Sexing up the logs

2008-04-03 04:00:00 by Stuart King in Stuart King's Security and Risk Management Blog
 
The title of this blog is false - a pure marketing ploy. Quite simply there is nothing sexy about logs. Few of us take any enjoyment out of reviewing them but there are plenty of mandates around telling us that we have to. For example, section 10 of the PCI DSS states: Review logs for all system components at least daily. Log reviews must...
 
Tags: logs, logs enables, security event logs, security, review logs, perform security functions, log, log output, information security events
 
 
 
 
Expand article

Stiennon wants to know - it is all about execution

2008-03-21 02:15:44 by ashimmy in StillSecure, After All These Years