Good afternoon everybody! I hope your day is going well.
Here are today’s Interesting Information Security Bits from around the web.
- PCI DSS version 1.2 differences and updates
Michael Dahn gives a break down of the differences between PCI DSS 1.1 and 1.2
- Massive TCP Flaw Looming
Nire on the new TCP based DOS found by some researchers in Sweden.
- Three hard drive imaging tools
Quinn gives a comparison of three drive imaging tools.
- Secure Life Ep 2
- Weak Hashing Algorithms: Outlook PST file CRC32 password cracking example
If you use password protected Outlook PST files, you might want to go take a look at this video. Actually, you should go take a look regardless.
- Software Lets Users Manipulate Passport Data – Security Fix
Report by Brian Krebs about a new tool that allows one to change the chip data in your or anyone else’s passport. That’s not good.
- The Pen Testing Perfect Storm Webcast Series with Skoudis, Wright, Johnson
Nifty series starting up on pen testing over on the Ethical Hacker Network.
- Electronic Data Records Law | How to Win E-Discovery: Retained Electronic Mail Supports Intellectual Property Claim
Legal Beagle has an interesting post up about how you can use your own robust document retention policies to bolster your case in the event of litigation. Of course, that assumes you have robust document retention processes and procedures. Might want to look into that.
That’s it for today. Have fun!