Interesting Information Security Bits for 10/18/2008

October 18, 2008

Good afternoon everybody! I hope your day is going well.

Here are today’s Interesting Information Security Bits from around the web.

  1. The Art of Software Security Assessment >> Bugs vs. Flaws
    A really interesting post about definitions and approaches to application security issues and testing. Read the comments too. Really good stuff.
  2. HiR Information Report: Response: “Is Twitter the newest data security threat?”
    Ax0n answer’s the question that Lori presented the other day.
  3. Telecom Immunity Law Challenged In Court — Telecom Amendments Act — InformationWeek
    The Electronic Frontier Foundation is challenging the Telecom Amendments Act that gave telecom providers retroactive immunity from prosecution for domestic wiretapping they did at the behest of the government. This is a very good thing.
  4. Two new IRS systems have major security weaknesses, federal report says
    Wow. The apparent delinquency in the systems discussed here is atrocious, particularly for the type of system being discussed, i.e. the one that keeps and manages our tax returns.
  5. Altor Networks Introduces Virtual Firewall – Application and Perimeter Security News Wire – Dark Reading
    I can’t comment on the effectiveness of the product, but it is nice to see this type of product starting to appear.
  6. BeCrypt Cryptographic Library Gets Cert – Host security News Wire – Dark Reading
    I’ve use BeCrypt products for quite some time and have found them to be excellent. They now have a library that is FIPS 140-2 certified.

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Advertisements

Interesting Information Security Bits for 10/17/2008

October 18, 2008

Good afternoon everybody! I hope your day is going well.

Here are today’s Interesting Information Security Bits from around the web.

  1. The IT Security Guy: Autumn 2008 Edition of 2600 on Newstands
    Looks the Autumn 2008 edition of 2600 is out already. Go get yours.
  2. StillSecure, After All These Years: StillSecure, After all these years, Podcast 59 – Mike Murray
    Alan and Mitchell have a new podcast up. Mike Murray visits with them about the impact current economic conditions might have on the security market.
  3. C S R C – Systems Administration
    NIST has released their Guide to Securing Microsoft Windows XP. Always good stuff.

    Hat tip: @danphilpott

  4. USB Goodies 2008 – Room362.com
    This is an awesome list of goodies for infosec and information technology peoples. Ah, who am I kidding, it’s a great list of goodies for any geek 🙂 The tools will soon be available as a downloadedable package on BitTorrent.
  5. NIST.gov – Computer Security Division – Computer Security Resource Center
    From the webpage:
    The intent of the assessment case is to provide helpful information and purposefully not to limit the flexibility of an assessor in applying his or her own judgment as to the ‘right’ set of assessor actions to assess a control in a specific information system or organization. Rather, the assessment cases provide worked examples for organizations to use in developing their assessment plans.
  6. Uncommon Sense Security: Security Twits Road Trip Photos
    A group of Security Twits recently hopped in an RV together and made the trip to DayCon. Here are the pictures from the trip.
  7. Survey: 88% of Mumbai’s wireless networks easy to compromise | Zero Day | ZDNet.com
    Not good, not good at all.

That’s it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin