scip AG

Labs: Blog Digest März 2012

am Donnerstag, 29. März 2012
von Marc Ruef | G+

Der scip Blog Digest ist eine jeweils Ende des Monats erscheinende Zusammenfassung der wichtigsten, spannendsten und verrücktesten Beiträge aus der internationalen Blogosphäre. Mit der Durchsicht dieser Postings wird es einfach und unkompliziert möglich, in Bezug auf Entwicklungen im Bereich IT-Security auf dem Laufenden zu bleiben. Folgen Sie unserem Team auf Twitter, um jeweils die aktuellsten News zu erhalten.

• 10 Movie Scenes Of Authentication Worth Rewatching (darkreading.com)
• 10 Tips to Fight Insider Fraud (govinfosecurity.com)
• 2012 Database Threats (pciguru.wordpress.com)
• 7 Problems with Cell Phone Forensics (feedproxy.google.com)
• Actually, my name is Duqu – Stuxnet is my middle name (stratsec.blogspot.com)
• Algorithms: When is Random Really Random? (infosecisland.com)
• Clickjacking, Cursorjacking and Common Facebook Vulnerabilities (infosecinstitute.com)
• Configuring Network Level Authentication for RDP (darkoperator.com)
• Detecting Brazilian Banking Trojans with Snort http_inspect (SpiderlabsAnterior)
• DGA’s vs Automated Malware Signature Generation (blog.damballa.com)
• Doing Biz with Hackers: Do Bad Guys Make the Best Good Guys? (infosecisland.com)
• Five Strategic Security Metrics To Watch (darkreading.com)
• How to prepare for Google’s privacy changes (cnn.com)
• How to Protect Yourself from Skimmers (infosecisland.com)
• How Windows 8 Sharing Blows Mountain Lion Out of the Water (mashable.com)
• iOS Data Security – Protecting Data on unmanaged Devices (securosis.com)
• iPad 3 Out – Now Keep It Safe (blog.fortinet.com)
• Linux 3.3 release (lkml.org)
• Malware reporting study: more infomation leads to higher cleanup rate (StopbadwareBlog)
• MS12-020 BinaryDiff (blog.binaryninjas.org)
• Prevent VoIP Toll Fraud with Proper Configurations (infosecisland.com)
• Quality Coding Takes A Break For The Holidays. But Why? (threatpost.com)
• Reflections on a Past Vulnerability, Kind Of… (stateofsecurity.com)
• Reliable Windows 7 Exploitation: A Case Study (ifsec.blogspot.com)
• Safe Coding and Software Security Infographic (veracode.com)
• Snort.org Blog: Rule Category Reorganization (Snort)
• Social networks & Deactivated Friend Attack, the cybercrime paradise… (securityaffairs.co)
• Some evidence on multi-word passphrases (lightbluetouchpaper.org)
• Some random observations on Linux ASLR (scarybeastsecurity.blogspot.com)
• The End of Vulnerabilities? (darkreading.com)
• The Futility of Web Pen Testing (deadliestwebattacks.com)
• The XOR Bypass (blog.damballa.com)
• Top 10 Oracle Steps to a Secure Oracle Database (blog.opensecurityresearch.com)
• Twelve Security Best Practices for USB Drives (infosecisland.com)
• What They Don’t Teach You in ‘Thinking Like the Enemy’ Classes (infosecisland.com)
• When Do I Need to Apply This Update – Adding Priority Ratings to Adobe (blogs.adobe.com)
• When Was The Term Exfiltration First Used? (blog.zeltser.com)

(590 Wörter)

Tags: Bank, USB, Adobe, Facebook, Google, Hacker, Linux, Malware, Oracle, Proxy, RSS, VoIP, Windows, Word, iOS, iPad

Labs Übersicht

• Letzte Beiträge
  • Computer Forensik – Ein Überblick
  • Vortrag zu Security Testing an SGRP Veranstaltung
  • Staatstrojaner – Kritik am neuen Bundesgesetz
  • Overview of Microsoft’s security toolkit EMET
  • Blog Digest April 2013
  • Wie statisch sollten Sicherheitsrichtlinien sein?
  • Timing für effiziente unentdeckte Portscans
  • Interpreting a Logfile with Grok
  • Spamhaus DDoS mit DNS Amplification
  • Blog Digest März 2013
• Archiv
  • 2013 | 2012 | 2011 | 2010 | 2009 |

• Blog Digest

• Blogroll
  • abuse.ch
  • c22.cc
  • computec.ch
  • darkreading.com
  • infosecisland.com
  • krebsonsecurity
  • metasploit.com
  • schneier.com
  • securiteam.com
  • stfn.ch
  • zeltser.com
  • 5e4n.ch
• Syndication
  • RSS
  • Twitter