DoD Battles Spear Phishing

This is a very interesting article: http://www.fcw.com/article97186-12-26-06-Web My favorite part of the article (emphasis added is all mine):”JTF-GNO illustrated the sophistication of spear phishing attacks DOD faces in a “DOD Spear Phishing Awareness Training” presentation obtained by Federal Computer Week. That presentation shows a faked message that appears to come from the operations division at…

0

Secunia Software Inspector

Soooo Secunia entered the vulnerability assesment market last week with a free tool they call the ‘Software Inspector’ . . . the concept is you download this Java applet and run it on your machine and it will report what software is vulnerable and needs to be updated according to the large vulnerability database Secunia…

0

Microsoft’s New Identity – Secure OS Vendor?

Roger Grimes has a great piece here on some of the hundreds of security improvements / tweaks we’ve made to Vista: http://www.infoworld.com/article/06/12/08/50OPsecadvise_1.html?source=NLC-STOADV2006-12-11  

0

On the topic of opening file attachments in a post Web 1.0 world . . .

So this week we released another security advisory in response to targeted attacks making use of a malicious office document as the attack vector . . . and in it we make the following statement which seems to have caused a stir in some circles: “Do not open or save Word files that you receive…

0

W32/HLLP.Philis.bq, Chinese gold farmers and what you can do about it. :)

Just read a fascinating blog post from the folks over at Secureworks. Basically they noted that W32/HLLP.Philis.bq has been spreading in certain parts of the world.  They also noted that recently a Chinese national was arrested in Japan for sending lots of money back to China.  He allegedly got the real money auctioning off gold accumulated…

1

Random Vista Security Factoid Du Jur

So domain-joined Vista no longer exposes the admin shares by default (i.e. admin$, c$ etc.). My take:  This is going to break tons of applications (systems management apps, patch deployment apps etc.) that rely on their existance and it will likely be one of the first security changes that is ‘undone’ by most  IT shops (well…

1

OSX Deepsight Security Report

So I’m not a HUGE fan of SYMC these days – but I have to give them props for releasing this: http://downloads.securityfocus.com/downloads/MacOSX_DeepSight_Report.pdf It’s a great look at the state of OSX today . . . it starts off by showing graphically that the vuln count discovery rate for OSX is increasing, not decreasing, then it…

0

Will we ever see a Microsoft Zunix?

So we’ve launched the Zune.  Yea us. I personally won’t be buying one – I’m sorta . . . bummed (to be polite) that it won’t play my extensive collection of MSN & Urge Plays4sure music and I’m too lazy to burn it all to CD and rip it back to WMA sans DRM.  What…

0

Web Attacker Toolkit – From Russia with Love

So here’s a very interesting blog post I came across recently:  http://www.websense.com/securitylabs/blog/blog.php?BlogID=94   It details the workings of an automated browser exploit toolkit that is sold by some Russians. That’s not surprising because Russians are uber 733t h4x0rs right?   Well the people who purchase this kit for the low price of $300 will be…

3