0
POPSFast Flux DNS Wiki Technique used to mask attacker's true identity and to avoid countermeasures such as IP ACLs
1
POPSSwatting This is a new one... Get someone to provide you some personal information, their address, and their phone number, phreak the phone number, and send the SWAT team to their house.
0
POPSWindows Vista Service Pack 1 RC Public Availability Program Installing SP1 RC1 now. You must run the script, then download the RC and the prereq's through Windows Update. Only install on non-critical machines. You will have to uninstall the RC before installing the final version. But hey, can installing the RC be any worse right now?
0
POPSSchneier on the SANS Top 20 Vulnerabilities Need to proxy connections to the Internet and STRICTLY limit where people can go. Unfortunately, there is very little desire to do this and many are willing to accept living in a compromised environment. At home, I have been modifying each machine's 'HOSTS' files ('There's no place like 127.0.0.1'), using K9 Web Content filtering, and recently been using OpenDNS to limit where my users (family) can go. Also, I have killed MSIE and have forced all users to use Firefox with the NoScript enabled. I have played with a virtual proxy that works well (especially when configured with 'Hosts', K9, OpenDNS, Antivirus, and FW blocking of all other hosts besides the proxy. When I figure out how to do the failover piece to keep the availability at 99%, I will implement it for good. Nothing is full-proof, but I sleep better at nights! (Thanks to RF-NCNF for the OpenDNS and NoScript tips!).
0
POPSMicrosoft Security Advisory (945713) Should not affect home users who are not part of a domain and also should not affect corps with a second-level domain (affects third-level or more). Proxy servers, WPAD servers, and those who disable the IE 'Automatically Detect Settings' mitigate this vulnerability. Most flavors of Windows/Vista affected when using MSIE (unclear whether or not other browsers have the same vulnerability, but I would assume they do if they depend on Windows/Vista to automatically detect settings).
0
POPSBruce Schneier Q&A This is a MUST read for all computer users. Bruce does us all a favour and links back to his pertinent articles.
0
POPSSecurity in Ten Years Marcus Rancun and Bruce Schnieier on security in ten years. They take the bleak view; I think we will have a security revolution before then which will make it better than they think...
0
POPSCriminals burrow into browsers to hack banks Important to note that these attacks are occurring BEFORE transmission. Therefore, the SSL tunnel between you and your bank (signified by the little lock on your browser) is meaningless as your information is compromised as it is entered on the form. The information is then sent by malware back to the harvesters who sell your information to the highest bidder. Preventing infection, detecting and removing the malware, and blocking egress communications with a firewall are the best prevention mechanisms. Also, keeping an eye on your credit is important.
0
POPSMore on the QuickTime RSTP vulnerability More on the RSTP vulnerability from Quicktime. Countermeasures include disabling Quicktime and iTunes until the problem is patched (likely v7.4), blocking RSTP at the gateway (TCP 554 and a range of UDP ports in 6000's), IDS detection of RSTP. Note- files are vulnerable too, so just blocking egress ports is probably not enough as any installed malware will probably use port 80 to egress. Best to disable the applications via the Registry (or uninstalling) until the patches are available as these exploits are almost certainly out there now.
0
POPSAmerica's 8m victims of identity theft About 2.5% of the population. Emphasis protection (computer security & document security for protecting personal information, use of credit cards and checks, using one account only for online transactions) and detection (credit checks, fraud alerts) with family, friends, co-workers.
0
POPSCybercrime vs Cyberterrorism Sometimes, it is all about using the right words. Prioritization seems to be the problem in the US Government. National Strategy to Secure Cyberspace is still falling short according to GAO audits. DHS has not figured out how to get in front of this issue, as the executive agent. PITAC recommendation to President should be strongly considered to ensure the funds committed are spent wisely.
1
POPSSunbelt Software: Google search results delivering massive malware attacks Crackers rigging web pages to gain high search rankings, enabling them to be posted near the top of the search thread. Best defense is to ensure you are surfing the web from a non-privileged account and to have a hardened browser (Firefox with the 'No Script' add-on, for instance). For IE, need to consider disabling iFrames.
1
Clips
Latest Pops
Latest Comments
Most Pops
Tags
Print
Save
Turn on live update