A couple days ago, McAfee announced that they intend to acquire Secure Computing. This move obviously boosts McAfee position in the overall security market. From the McAfee Security Insights Blog: I am excited to announce that McAfee intends to acquire Secure Computing, a leading provider of network security to businesses of all sizes. This pending [...]

Interested in the security aspects of Voice over IP? Global Knowledge recently held a seminar on the subject, and the (free) presentation is now online. The VoIP Security Web Seminar covers several threat vectors, and some tools that exploit those vulnerabilities.

A few days ago, OWASP Israel held a full day, two track conference. The presentations are now available to download on the OWASP Israel 2008 Conference page, and many of them sound interesting. Management Track Web Application Security and Search Engines – Beyond Google Hacking by Amichai Shulman Trends in Web Hacking: What’s Hot in [...]

Fyodor’s Nmap presentation during DEFCON 16 is now available in video form on insecure.org. Fyodor waited to release the video until Nmap version 4.75 was released, since the presentation goes over many of the new features in Nmap. Two cool new features are the open port frequency options, and integration of the Zenmap GUI. Zenmap [...]

Last Friday, Forever 21 issued a notice on their website stating that their systems were illegally accessed to obtain customer payment card information. Approximately 98,930 credit and debit card numbers were illegally accessed, but more than half of the affected payment card numbers are no longer active or have expired expiration dates. We have determined [...]

It looks like the security conference archive at good.net has all the DEFCON 16 audio online. But what’s better than audio? Video of course, and the folks at DEFCON released four presentations that have been in the news recently. Active HTTPS Cookie Hijacking by Mike Perry DNS Goodness by Dan Kaminsky Stealing the Internet by [...]

The ultimate security conference media archive has a new home at good.net. Once hosted at EasyNews.com, the massive security conference media archive was consuming too much disk space, outgrowing the very generous host. The archive contains several years of audio and video from security conferences like BlackHat, DEFCON, DeepSec, Hack In The Box, HOPE, ShmooCon, [...]

For those that love web application security data, WASC has just released their Web Application Security Statistics Report for 2007. Statistics were compiled from several companies, including Booz Allen Hamilton, BT, Cenzic, dblogic.it, HP, Positive Technologies, Veracode, and WhiteHat Security. In total, over 32,000 sites were analyzed, with roughly 70,000 vulnerabilities of different degrees of [...]

The ISIS Lab of NYU-Poly is having their annual Cyber Security Awareness Week (CSAW) where students can compete and win prizes in a variety of information security challenges. There are seven information security competitions: Security Quiz, Application Security CTF, Forensics Challenge, Essay Contest, Awareness Poster Design Competition, Embedded System Challenge, and Research Post Competition. All [...]

Here is a list of events going on this month in the information security space. IT Security World: September 13-19 VizSEC 2008: September 15 RAID 2008: September 15-17 Interop New York 2008: September 15-19 OWASP AppSec 2008: September 22-25 ToorCon X: September 24-28