Finding FastFlux Botnet

Very cool way of locating fastflux botnets. http://www.ece.tamu.edu/~reddy/papers/imc2010-yadav.pdf I'm still reading it, but it's very interesting.
Anti-Zombie Bill

http://www.zdnet.com/blog/security/zombie-pc-prevention-bill-to-make-security-software-mandatory/8487 I wonder if this will catch on? I don't think this will stop everything but it can't hurt. You will still get infected, but at least there is something there.
The 2011 Security Story

Well maybe not the 2011 story, but I am pretty sure the next big thing will be mobile devices such as phones and tablets. There is lots of users that will cross personal devices with business devices, would you allow a laptop or pc in to your environment like that? The other question is what...
What happens when the Certificate Authority system fails

Bad things. That's what. The story is that someone stole digital certificates for some big sites on March 15th using a username and password they obtained, the sites included Hotmail, Gmail, Yahoo and Skype. On a scale of one to ten of a sites security issues this is more like an eleven. ...
Blind SQL Injection on mysql.com

Weekend break-in at mysql.com, there is a posting on the full disclosure mailing list here; http://seclists.org/fulldisclosure/2011/Mar/309 The posting includes the structure of the db also usernames and password hashes. I don't see any postings from mysql.com acknowledging the...
Australian Ministers Email Compromised

The information is a little vague as there is an active operation in regards with it. But what is known is at least 10 ministers have had their email accounts compromised, for more than a month. During this time several thousand emails may have been accessed on a non-secure level...
Facebook wow

When I see an article about a facebook page being vandalized I always need to read it. This time I wish I did not, what a Jerk! http://www.brisbanetimes.com.au/technology/technology-news/facebook-vandal-jailed-20110325-1c9mq.html It's good to see him going to jail for it at least.
A little more RSA breach info

It's just a little more, there is still nothing published that I can find about what was taken but this has some more background information and interesting commentary. http://blogs.bankinfosecurity.asia/posts.php?postID=915
Routing changes

Not that changes in routes don't happen frequently but when routes bounce between continents you would like think that might raise a flag with someone that is monitoring that. http://news.cnet.com/8301-27080_3-20046338-245.html Either Chinanet has the worst Cisco / networking guy ever or...
Very cool command and control

I do find command and control structures of botnets very interesting, I do find the creativity of them incredible. http://www.bbc.co.uk/news/technology-12859591 This is one I have not seen before, using custom encryption and using message board comments as a means of communication. ...