@RISK Online - The Security Blog
2 user(s) online.
Wednesday, September 29, 2004Wardriving / Wifi Mapping
I've noticed from my traffic logs that many people are still looking for my wifi maps. I had temporarily removed this while transferring to my new format. That page has been restored here.
posted @ 09:51 AM EST [link]
Does Windows XP Pro provide tracking of your actions?
Frankly, I can't answer that question myself... yet. I came across an article this morning which claims to provide evidence of this activity. The article (Evidence For The Microsoft WinXP Pro Bugging Device) outlines multiple actions that take place on a Windows XP Pro system without providing any notification to the end user. There are also relevant links to other articles and papers describing some of these actions.
I have not worked my way through this in detail yet, nor performed my own analysis, but I hope to do so in the near future. In the meantime, read the original work here.
posted @ 07:54 AM EST [link]Tuesday, September 28, 2004SchmooCon 2005 Comes To Washington DC
Finally, a hacker convention that's NOT hosted in Vegas! Yes, that's right, the First Annual ShmooCon 2005 February 4-6 2005, at the Wardman Park Marriott Hotel, in Washington, D.C.
In the words of the hosts, ShmooCon will be a different breed of security convention. The convention will take place over 3 days and will consist of 3 different tracks. Break It! Build It! and BoF It! Take a look... I'll see you there.
posted @ 09:06 PM EST [link]
JPEG Virus on the loose. Don't Panic... Prepare!
Reports have come in about a JPEG virus released to USENET earlier this week. This actually appears to be primarily a trojan and not a worm, but future variants could include propogation capabilities. It's reported that the infected computers so far are being controlled by one individual.
The SANS Internet Storm Center has released a tool called GDIScan that will check for any programs that might be using an exploitable version of the GDI driver.
Is this the next Code-Red or Slammer? It's too early to tell. But, Please, don't panic... Prepare!
- Determine your exposure. Are you vulnerable? Use the GDIScan tool and take a look at your systems.
- Apply the appropriate security patches. Start testing and deploying these patches NOW. The exploits are propagating already.
- Update your virus signatures. Do this on a regular basis, but especially at a time when an exploit of this nature has started its life cycle.
- Be alert. Monitor traffic patterns, firewall and IDS logs, etc. Watch for abnormal traffic patterns or surges. Track your Helpdesk support calls. Is there a new trend developing in the calls? Users may not know what the problem is, but they may alert you indirectly.
This is not a complete list... Just a reminder. Keep your eyes and ears open. I'll post updates when there's more news.
posted @ 09:13 AM EST [link]
Politics... Ugh!
This is a policitical season, but this is not a policitical blog site. Therefore, I'm not going to go on and on about politics. I'm not even going to state which "side" I'm on. In the interest of Truth, I am going to post a link to a site that seems to seek the truth of all the statements made by both political parties.
As far as I can tell, this site has done a decent job of trying to find the facts behind the words. The site is FactCheck.org. Like most of you, I already know who I will vote for in the upcoming elections. Regardless of my political orientation, I still seek the Truth. I hope all of you do too. Enjoy.
posted @ 08:57 AM EST [link]Sunday, September 26, 2004Great article in Microsoft's new approach to "security updates" vs "upgrades".
I first came across this article references at a Security Blog that I ready pretty regularly called A Day in the Life of an Information Security Investigator 'A Day in the Life of an Information Security Investigator'. This article (Microsoft: To secure IE, upgrade to XP | CNET News.com) was referenced. The gist of the article is, if you want security, you'll have to upgrade to Windows XP. Go check it out...
posted @ 08:57 PM EST [link]Friday, September 24, 2004@RISK Online Gets A Facelift!
Greetings all, and welcome to the new and improved @RISK Online. I've converted the site to a blog using Greymatter as my blog engine. I've tried to keep a similar look and feel in the new template. I've also "posted" my old articles as blog entries in order to incorporate them into the blog archive interface. My goal here is to make the site more manageable and make it easier to update (and thus more likely that I will actually do something with this site).
I look forward to comments from anyone related to the new site, and please let me know if you encounter ANY problems so I can resolve them quickly. Thanks for all your ongoing interest and support!
posted @ 09:39 AM EST [link]
|
| September 2004 | | S | M | T | W | T | F | S | | | | 1 | 2 | 3 | 4 |
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | | |
Blogroll Me!
Navigation:
Home
Archives
About Me
Articles
Email
News Feed
Projects
My Blogroll:
Security Advisories:
Anti-Phishing
AUSCERT
BugBlog
CERIAS
CERT
CIAC
Cisco Advisories
F-Secure
iDefense
ISS XForce
McAfee
Windows Security
Oracle Alerts
Secunia
Security Corporation
Security Focus
Security Tracker
SGI Advisories
Sun Alerts
Symantec
Trend Micro
Zone-H
Defacements Archive:
Zone-H Digital Archive
Security News:
DShield
Help Net Security
Internet Storm Center
Linux Security
NewsNow: Encryption/Security
NewsNow: Hacking
Packet Storm
Securiteam
Security News Portal
Security Stats
Security Focus
Risks Digest
Zone-H
Security Tools:
Packet Storm
Astalavista
Help Net Security
Packet Factory
Security Focus
|
