Finding FastFlux Botnet
Profile: Dan O'Connor
Very cool way of locating fastflux botnets. http://www.ece.tamu.edu/~reddy/papers/imc2010-yadav.pdf I'm still reading it, but it's very interesting.
0 Comments
RSS Feed
Email a friend
Anti-Zombie Bill
Profile: Dan O'Connor
http://www.zdnet.com/blog/security/zombie-pc-prevention-bill-to-make-security-software-mandatory/8487 I wonder if this will catch on? I don't think this will stop everything but it can't hurt. You will still get infected, but at least there is something there.
0 Comments
RSS Feed
Email a friend
The 2011 Security Story
Profile: Dan O'Connor
Well maybe not the 2011 story, but I am pretty sure the next big thing will be mobile devices such as phones and tablets. There is lots of users that will cross personal devices with business devices, would you allow a laptop or pc in to your environment like that? The other question is what...
0 Comments
RSS Feed
Email a friend
What happens when the Certificate Authority system fails
Profile: Dan O'Connor
Bad things. That's what. The story is that someone stole digital certificates for some big sites on March 15th using a username and password they obtained, the sites included Hotmail, Gmail, Yahoo and Skype. On a scale of one to ten of a sites security issues this is more like an eleven. ...
0 Comments
RSS Feed
Email a friend
Blind SQL Injection on mysql.com
Profile: Dan O'Connor
Weekend break-in at mysql.com, there is a posting on the full disclosure mailing list here; http://seclists.org/fulldisclosure/2011/Mar/309 The posting includes the structure of the db also usernames and password hashes. I don't see any postings from mysql.com acknowledging the...
0 Comments
RSS Feed
Email a friend
Australian Ministers Email Compromised
Profile: Dan O'Connor
The information is a little vague as there is an active operation in regards with it. But what is known is at least 10 ministers have had their email accounts compromised, for more than a month. During this time several thousand emails may have been accessed on a non-secure level...
0 Comments
RSS Feed
Email a friend
Facebook wow
Profile: Dan O'Connor
When I see an article about a facebook page being vandalized I always need to read it. This time I wish I did not, what a Jerk! http://www.brisbanetimes.com.au/technology/technology-news/facebook-vandal-jailed-20110325-1c9mq.html It's good to see him going to jail for it at least.
0 Comments
RSS Feed
Email a friend
A little more RSA breach info
Profile: Dan O'Connor
It's just a little more, there is still nothing published that I can find about what was taken but this has some more background information and interesting commentary. http://blogs.bankinfosecurity.asia/posts.php?postID=915
0 Comments
RSS Feed
Email a friend
Routing changes
Profile: Dan O'Connor
Not that changes in routes don't happen frequently but when routes bounce between continents you would like think that might raise a flag with someone that is monitoring that. http://news.cnet.com/8301-27080_3-20046338-245.html Either Chinanet has the worst Cisco / networking guy ever or...
0 Comments
RSS Feed
Email a friend
Very cool command and control
Profile: Dan O'Connor
I do find command and control structures of botnets very interesting, I do find the creativity of them incredible. http://www.bbc.co.uk/news/technology-12859591 This is one I have not seen before, using custom encryption and using message board comments as a means of communication. ...
0 Comments
RSS Feed
Email a friend
