Interesting Information Security Bits for 09/24/2008

Good afternoon everybody! I hope your day is going well.
Here are today’s Interesting Information Security Bits from around the web.

  1. Raise user security awareness with a free training kit | IT Security | TechRepublic.com
    Chad Perrin has the first of a series of articles that will explore using the free materials that area available from Microsoft for Security Awareness training.
  2. samsclass.info: Sam Bowne Class Information
    This site is referred to by on of the other posts mentioned today, but I thought it deserved its own mention. Good resource for free training materials if you are so inclined.
  3. ‘Profiler’ Hacks Global Hacker Culture – Desktop Security News Analysis – Dark Reading
    An interesting article by Kelly Jackson Higgins about profiling hackers and one man’s efforts to do so.
  4. Certification still pays for CISSPs, CISMs
    Carolyn Gibnet has some info gleaned from the Foote Partners IT Salary Survey about how the CISSP and CISM certifications affects your salary.
  5. Researchers discover PDF exploit packs | Zero Day | ZDNet.com
    There is an exploit pack that targets PDFs running around. Ryan gives us more info.
  6. India’s government: At last, we’ve cracked Blackberry’s encryption | Zero Day | ZDNet.com
    Dancho relays a report that the Indian government claims to have cracked Blackberry’s encryption, kind of.
  7. Graham Cluley’s blog
    Sophos has a new release that contains “enhanced malware protection.” Probably worth playing with.
  8. Dirty dozen: Firefox ships patch for 12 security flaws | Zero Day | ZDNet.com
    Time to patch Firefox. Ryan breaks down what the latest update fixes.
  9. Coding Horror: Cross-Site Request Forgeries and You
    Jeff explains very clearly how csrf attacks work.
  10. Dismantling an XML-Bomb << Didier Stevens
    Didier walks us through how easy it is to create an XML bomb and then gives us some suggestions on how to defend against them. Very cool stuff.
  11. Teaching Hacking at College by Sam Bowne(Hacking Illustrated Series InfoSec Tutorial Videos)
    Irongeek points out Sam Bowne’s DefCon 15 talk about teaching hacking at college. Good stuff.

That’s it for today. Have fun!
Kevin

Advertisements

Comments are closed.

%d bloggers like this: