SEARCH RESULTS
 
Showing 1-10 of 27 records
 
Expand article

Buffer Overflows are like Hospital-Acquired Infections?

2007-09-16 12:35:00 by Security Retentive in Security Retentive
 
...tricky. Not impossible, but tricky. Given the attention to buffer overflows, the fact that we have tools to completely eliminate them from regular code, I'd say they fall into the same category as surgical tools left inside the patient - negligence A key quote from Lucien Leape of the Harvard School of Public Health Today, he says, dozens...
 
Tags: buffer overflows, infections, patient, buffer overflows tricky, errors, patient differences, avoidable errors, tricky, blatant surgical errors
 
 
 
 
Expand article

Using Remote Assistance behind a router

2008-01-14 08:24:00 by Keith Brown in Security Briefs
 
...tricky for me to use Remote Assistance to help my less technical friends and coworkers. The FAQs for Remote Assistance make it sound like if the routers on either end support Universal Plug and Play, you won't have any trouble. If anybody knows how to figure out if a router supports this, leave a comment on this blog entry. I suspect that if...
 
Tags: remote assistance, remote assistance session, assistance, assume remote assistance, remote assistance faq, router, remote desktop port, remote desktop, computer
 
 
 
 
Expand article

The Austin Project

2008-01-21 22:45:39 by RSnake in ha.ckers.org web application security lab
 
...tricky to run. On one hand I have some of the most technically competent people in the web security community visiting regularly. For them, some of the most complex topics I cover make perfect sense, and there is very little confusion. For the non-techies the technical posts are either misread or left unread. Either way, thats not good for...
 
Tags: people, competent people, project, helps people focus, austin project, austin project web-page, security, web application security, site
 
 
 
 
Expand article

IP Addresses Are Considered Personally Identifiable Information in the EU

2008-01-22 15:39:31 by RSnake in ha.ckers.org web application security lab
 
...tricky way people can use to get around this (like hashing the IP or stripping off the last bits - which is mentioned in the last part of the article but probably isnt much actual protection since that only makes it 255 times harder to guess at best). This is one to watch folks
 
Tags: information, addresses, identifiable information, people, content, googles business model, party, log analysis software, actual protection
 
 
 
 
Expand article

Virtual Eyes

2007-08-01 19:25:00 by jack in adware and spyware
 
...tricky Free spyware and adware programs often come bundled along with some freeware downloads that you may be enticed into installing. There are also some unsolicited pop-ups that you may encounter while browsing that look like regular Windows system generated pop-ups and clicking on these will cause you to unknowingly install unwanted...
 
Tags: spyware, anti-spyware downloads, spyware business, anti-spyware programs, spyware attacks, free spyware, internet, internet users pause, internet access
 
 
 
 
Expand article

ScanAlert - XSS is Cool with Us

2008-01-21 20:58:57 by Bill in Grumpy Security Guy
 
...tricky issue to explain to people that dont understand. It basically boils down to bad people using my website to compromise clients. What they do with those compromised clients can range from fairly benign replicating worms , phishing scams , all the way to total remote control of the end users browser. The fine folks at Scam ScanAlert...
 
Tags: scanalert, xss, people, crazy people, mcafee acquires scanalert, security stories, bad people, xss vulnerabilities, underground security resources
 
 
 
 
Expand article

5 Security Predictions for 2008

2008-01-09 00:04:14 by Bill in Grumpy Security Guy
 
...tricky issue to explain t Mr. Jobs, get serious about security Post from: Grumpy Security Guy 5 Security Predictions for 2008
 
Tags: security, security predictions, security players, security industry, grumpy security guy, worm, multi-website xss worm, xss, security stories
 
 
 
 
Expand article

Are your digital devices Certified Pre-0wned?

2008-03-17 16:11:45 by Chris Wysopal in Zero in a bit
 
...tricky to dodge. First you couldnt open email attachments you werent expecting. Then you had to worry about surfing even trusted websites with JavaScript turned on, even with the latest patched browsers. Now you have to worry about plugging in the shiny new digital toy you got as a gift. Perhaps its a digital picture frame, digital camera,...
 
Tags: devices, malware, low volume malware, drive, tech devices, usb drive, previously unknown malware, digital picture frame, inexpensive digital devices
 
 
 
 
Expand article

Terror on the Internet - Conflict of Interest

The Article has images
2008-03-18 19:58:23 by HASH0x8471fd8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...tricky, especially when you don't know what you're looking for, don't prioritize, don't have a contingency plan or an offline copy of the communitiy and wrongly building confidence in its ability to remain online. Moreover, monitoring for too long results in terrabytes of noise, and from a psychological perspective sometimes the rush for yet...
 
Tags: cyber jihadist, cyber jihadist communities, novice cyber jihadists, jihadists, cyber jihadist forums, cyber jihadist sites, attract cyber jihadists, internet, cyber jihadists
 
 
 
 
Expand article

Say When - Trusting Log Timestamps

2008-03-23 04:05:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...tricky to give it justice here... The simplest example is when the process leaves a log records when it exits not when it starts, possibly days earlier (thus creating a log lag As we dive into more issues with timing logs, we also need to think about sequence timing and absolute timing. Sequence of logged events is a critical fact! Miss the...