Last week was the Integrated Cyber Exercise (ICE) ran by White Wolf Security. The game consisted of three teams that either attack (Red Cell), defend (Blue Cell), or observe. The Blue Cell were responsible for keeping their network alive and functional, and the Red Cell were responsible for attacking the Blue Cell network. Here are [...]
When using a Hotel’s network, do you ever wonder how safe you are when connected to it? In a recent study from the Cornell University School of Hotel Administration, they found that most hotels are not secured properly. The paper called Hotel Network Security: A Study of Computer Networks in U.S. Hotels (registration required) shows [...]
As many of you have noticed, our information security events calendar only covers events held in North America. But information security is not an issue only in North America, but everywhere around the world. We have noticed an increase of good security events outside North America, so we decided to create another google shared calendar. [...]
Here is a list of events going on this month in the information security space. Virus Bulletin 2008: October 1-3 SecTor 2008: October 7-8 Malware 2008: October 7-8 Day-Con II: October 10-12 eCrime Research Summit: October 15-16 Phreaknic 12: October 24-25 Techno Forensics Conference 2008: October 27-29 ChicagoCon 2008f: October 27-November 1 NYS Cyber Security [...]
A couple days ago, McAfee announced that they intend to acquire Secure Computing. This move obviously boosts McAfee position in the overall security market. From the McAfee Security Insights Blog: I am excited to announce that McAfee intends to acquire Secure Computing, a leading provider of network security to businesses of all sizes. This pending [...]
Interested in the security aspects of Voice over IP? Global Knowledge recently held a seminar on the subject, and the (free) presentation is now online. The VoIP Security Web Seminar covers several threat vectors, and some tools that exploit those vulnerabilities.
A few days ago, OWASP Israel held a full day, two track conference. The presentations are now available to download on the OWASP Israel 2008 Conference page, and many of them sound interesting. Management Track Web Application Security and Search Engines – Beyond Google Hacking by Amichai Shulman Trends in Web Hacking: What’s Hot in [...]
Fyodor’s Nmap presentation during DEFCON 16 is now available in video form on insecure.org. Fyodor waited to release the video until Nmap version 4.75 was released, since the presentation goes over many of the new features in Nmap. Two cool new features are the open port frequency options, and integration of the Zenmap GUI. Zenmap [...]
Last Friday, Forever 21 issued a notice on their website stating that their systems were illegally accessed to obtain customer payment card information. Approximately 98,930 credit and debit card numbers were illegally accessed, but more than half of the affected payment card numbers are no longer active or have expired expiration dates. We have determined [...]
It looks like the security conference archive at good.net has all the DEFCON 16 audio online. But what's better than audio? Video of course, and the folks at DEFCON released four presentations that have been in the news recently. Active HTTPS Cookie Hijacking by Mike Perry DNS Goodness by Dan Kaminsky Stealing the Internet by [...]