Home > IT Blogs > IT Trenches/

IT Trenches:

infosec

12
November 19, 2010  2:37 PM

Anatomy of a crimeware rootkit – scary stuff!



Posted by: Troy Tate
crimeware, infosec, malware, rootkit, training, trojan, tutorial

I came across a recent tutorial on reverse engineering the ZeroAccess / Max++ / Smiscer Crimeware Rootkit. This is a very malicious...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

September 10, 2010  5:05 PM

Is there an orange ball in information security?



Posted by: Troy Tate
awareness, information security, infosec, malicious software, malware, network management, network security, security awareness

In Japan many retailers have what look like orange balls or waterballoons near checkouts. Bruce Schneier, a leading information security expert, recently blogged about these

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

September 10, 2010  3:56 PM

DLL hole also affects EXE files



Posted by: Troy Tate
exploit, hacking, information security, infosec, risk analysis, threat, vulnerability

According to a Heise Media report, the DLL binary planting vulnerability is not just limited to DLL files but affects EXE files. The example given: An HTML file is saved along with a copy of a file called EXPLORE.EXE. The HTML file is opened and has a URI link embedded with the address file://....

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

August 27, 2010  1:35 PM

Hackers send exploit code to Microsoft



Posted by: Troy Tate
application development, information security, infosec, infosec awareness, malicious software, malware, Microsoft, Microsoft Windows, web application development

Go ahead and report why your system crashed - send Microsoft the exploit code you are working on. As most Windows users know, you can send Microsoft details about what caused a system crash. In some cases hackers respond yes and their exploit code is sent to Microsoft according to a

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

August 17, 2010  5:48 PM

8-character passwords are so 1999 – 12 characters is 21st century



Posted by: Troy Tate
access management, authentication, brute force, hacking, identity management, information security, infosec, infosecurity, Password, password management, secure access, Security

Today's computers and add-on processors (think graphics processing units - GPU's) are extremely powerful. The GPU of today offers about 2 teraflops (10^12 floating...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

May 21, 2010  5:15 PM

SC Vision – web videos for infosec professionals



Posted by: Troy Tate
education, information security education, infosec, PKI, Security, security administration, security awareness, webinar

SC Magazine has announced the SC Vision TV website. Currently there is a collection of about 7 videos of interest to IT professionals on such topics as Driving More Informed...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

May 21, 2010  2:08 PM

Federal Cybersecurity Game-Change R&D program announced



Posted by: Troy Tate
cybersecurity, economics, education, government, information security, information security awareness, infosec

The Networking and Information Technology Research and Development (NITRD) Program has announced a cybersecurity game-change research and development program. On May 19, 2010, an event...

  Bookmark and Share     1 Comment     RSS Feed     Email a friend

May 19, 2010  8:09 PM

Malvertisements – 1.3 million viewed per day!



Posted by: Troy Tate
drive-by download, information security, information security awareness, infosec, malicious software, malware, security awareness

Last year the NY Times website had advertisements that served up some malicious content (Would you click if it showed on the NY Times website? -...

  Bookmark and Share     2 Comments     RSS Feed     Email a friend

May 12, 2010  2:48 PM

Follow Twitter “How to become a hacker in 15 minutes”



Posted by: Troy Tate
certified ethical hacking, education, hacking, information security, information security education, infosec, infosec awareness, Security, technology, twitter

Well, it looks like it might be time for me to join the "twitterpated". Until now I did not see much value in this additional information source. With regards to Twitter, I tend to agree with

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

May 12, 2010  1:16 PM

A password reminder to carry with you



Posted by: Troy Tate
access management, identity management, information security, infosec, infosecurity, Password, password management, secure access, Security

Okay, passwords may have reached the end of their useful life, but passwords are not gone yet. I know it is a challenge to come up with a unique secure password for all identities that we use to access secured...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

12