Irregular Expressions:

March, 2011

March 30, 2011  10:15 PM

Finding FastFlux Botnet

Posted by: Dan O'Connor
botnet, fastflux, links

Very cool way of locating fastflux botnets. I'm still reading it, but it's very interesting.

March 30, 2011  10:02 PM

Anti-Zombie Bill

Posted by: Dan O'Connor
anti-virus, botnet, south korea, virus I wonder if this will catch on? I don't think this will stop everything but it can't hurt.  You will still get infected, but at least there is something there.

March 29, 2011  11:49 PM

The 2011 Security Story

Posted by: Dan O'Connor
botnet, cell phone, cell phone botnet, sms command and control

Well maybe not the 2011 story, but I am pretty sure the next big thing will be mobile devices such as phones and tablets.  There is lots of users that will cross personal devices with business devices, would you allow a laptop or pc in to your environment like that? The other question is what...

March 29, 2011  10:50 PM

What happens when the Certificate Authority system fails

Posted by: Dan O'Connor
CA, certificate authority failure, chrome, firefox, mozilla, ssl

Bad things. That's what. The story is that someone stole digital certificates for some big sites on March 15th using a username and password they obtained, the sites included Hotmail, Gmail, Yahoo and Skype.  On a scale of one to ten of a sites security issues this is more like an eleven. ...

March 29, 2011  9:50 PM

Blind SQL Injection on

Posted by: Dan O'Connor
blind sql injection, mysql hack, SQL injection

Weekend break-in at, there is a posting on the full disclosure mailing list here; The posting includes the structure of the db also usernames and password hashes.  I don't see any postings from acknowledging the...

March 29, 2011  9:34 PM

Australian Ministers Email Compromised

Posted by: Dan O'Connor
Australian email hack, email hack, secureid

The information is a little vague as there is an active operation in regards with it.  But what is known is at least 10 ministers have had their email accounts compromised, for more than a month.  During this time several thousand emails may have been accessed on a non-secure level...

March 28, 2011  1:03 PM

Facebook wow

Posted by: Dan O'Connor

When I see an article about a facebook page being vandalized I always need to read it. This time I wish I did not, what a Jerk! It's good to see him going to jail for it at least.

March 28, 2011  12:57 PM

A little more RSA breach info

Posted by: Dan O'Connor

It's just a little more, there is still nothing published that I can find about what was taken but this has some more background information and interesting commentary.

March 27, 2011  12:15 AM

Routing changes

Posted by: Dan O'Connor
china, links, routing

Not that changes in routes don't happen frequently but when routes bounce between continents you would like think that might raise a flag with someone that is monitoring that. Either Chinanet has the worst Cisco / networking guy ever or...

March 26, 2011  11:47 PM

Very cool command and control

Posted by: Dan O'Connor
botnet, command and control, links

I do find command and control structures of botnets very interesting, I do find the creativity of them incredible. This is one I have not seen before, using custom encryption and using message board comments as a means of communication. ...

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: