scip AG

Labs: Blog Digest Februar 2012

am Mittwoch, 29. Februar 2012
von Marc Ruef | G+

Der scip Blog Digest ist eine jeweils Ende des Monats erscheinende Zusammenfassung der wichtigsten, spannendsten und verrücktesten Beiträge aus der internationalen Blogosphäre. Mit der Durchsicht dieser Postings wird es einfach und unkompliziert möglich, in Bezug auf Entwicklungen im Bereich IT-Security auf dem Laufenden zu bleiben. Folgen Sie unserem Team auf Twitter, um jeweils die aktuellsten News zu erhalten.

• 8 Breach Prevention Tips (govinfosecurity.com)
• A Career in Forensics: 5 Key Steps (govinfosecurity.com)
• Algorithms: When is Random Really Random? (infosecisland.com)
• A Milestone in IPv6 Deployment (ddos.arbornetworks.com)
• Android malware employs steganography (f-secure.com)
• Attackers Use Fake Friends to Blend into Facebook (barracudanetworks.com)
• Block a country with my Cisco Router or Firewall (blogs.cisco.com)
• Chinese Hackers Suspected in Nortel Breach (wsjonline.com)
• Cybercriminals Moving Over To TLD .su (abuse.ch)
• Designing enterprise systems for the accidental incident (Wh1t3Rabbit)
• Digital Exams on the iPad (speirs.org)
• ESET researchers on Windows Phone 8 Security (ESET)
• Exploring Your Browser LocalStorage (blog.opensecurityresearch.com)
• Five principles to better your security monitoring (darkreading.com)
• Five Schemes For Redeeming Trust in SSL (darkreading.com)
• Five Strategic Security Metrics To Watch (darkreading.com)
• How (And Why) Attackers Choose Their Targets (darkreading.com)
• How Companies Learn Your Secrets (nytimes.com)
• How To Defend Your Database From Malicious Insiders (darkreading.com)
• How to navigate Google’s privacy options (GrahamCluleysBlog)
• Incident Response: Have You Got a Plan? (infosecisland.com)
• JSON CSRF with Parameter Padding (blog.opensecurityresearch.com)
• Kippo is being detected by Metasploit (bruteforce.gr)
• Maximizing Value in Pen Testing (pen-testing.sans.org)
• Mobile Devices Just Another Endpoint (darkreading.com)
• Nessus 5.0 Released! (blog.tenablesecurity.com)
• NYPD Developing THz Body Scanners to Detect Weapons (thznetwork.net)
• Penetration Testing for iPhone Applications (resources.infosecinstitute.com)
• Prevent VoIP Toll Fraud with Proper Configurations (infosecisland.com)
• Quantifying Risk Reduction with an Unknown Denominator (Wh1t3Rabbit)
• Redesigning the Windows Logo (windowsteamblog.com)
• Server-side Polymorphic Android Applications (symantec.com)
• Some IDS comments (erratasec.blogspot.com)
• The Aftermath Of A Breach (darkreading.com)
• The Differences Between Security Certifications (infosecisland.com)
• Timing Analysis Attacks in Anonymous Systems (resources.infosecinstitute.com)
• Twelve Security Best Practices for USB Drives (infosecisland.com)
• When in the Cloud, Trust – but Verify (technewsworld.com)
• When Was The Term ‘Exfiltration’ First Used? (blog.zeltser.com)
• Who has better privacy laws: USA or European Union? (GrahamCluleysBlog)
• Why stream ciphers shouldn’t be used for hashing (rdist.root.org)

(652 Wörter)

Tags: USB, Android, Browser, Bruteforce, Cisco, DDoS, Facebook, Firewall, Google, Hacker, Malware, Nessus, PIN, Penetration Test, Proxy, RSS, VoIP, Windows, XML, iPad, iPhone

Labs Übersicht

• Letzte Beiträge
  • Computer Forensik – Ein Überblick
  • Vortrag zu Security Testing an SGRP Veranstaltung
  • Staatstrojaner – Kritik am neuen Bundesgesetz
  • Overview of Microsoft’s security toolkit EMET
  • Blog Digest April 2013
  • Wie statisch sollten Sicherheitsrichtlinien sein?
  • Timing für effiziente unentdeckte Portscans
  • Interpreting a Logfile with Grok
  • Spamhaus DDoS mit DNS Amplification
  • Blog Digest März 2013
• Archiv
  • 2013 | 2012 | 2011 | 2010 | 2009 |

• Blog Digest

• Blogroll
  • abuse.ch
  • c22.cc
  • computec.ch
  • darkreading.com
  • infosecisland.com
  • krebsonsecurity
  • metasploit.com
  • schneier.com
  • securiteam.com
  • stfn.ch
  • zeltser.com
  • 5e4n.ch
• Syndication
  • RSS
  • Twitter