# SANS ISC

# threatpost.com

  • National Security Data on Private Networks Exposed as a Weak Point Tue, 21 May 2013 15:43:08 +0000
    The United States intelligence community and its counterparts in law enforcement are quite secretive about their surveillance methods and the targets of those operations. Few people are privy to information about ongoing surveillance, but now it turns out that the Chinese government may have a better handle on who some of those targets are than [...]
  • Remote Code Injection Vulnerabilities Discovered in iOS Apps Mon, 20 May 2013 20:39:08 +0000
    Multiple vulnerabilities have been discovered in both File Lite and File Pro, two file management applications created by Perception Systems for iOS, currently available on Apple’s App Store.
  • Targeted Espionage Attack Borrowing from Cybercriminals Mon, 20 May 2013 18:47:14 +0000
    The Safe cyberespionage campaign includes elements of malware and coding from a professional cybercrime software development team.
  • Privacy in the Age of Ubiquitous Computing Mon, 20 May 2013 16:27:39 +0000
    REDMOND, Wash.–If one were to draw up a list of the most challenging jobs in the technology industry, chief privacy officer at Microsoft likely would be pretty near the top of it. For a company with the size and scope of Microsoft, the volume of potential privacy issues is nearly endless, and if someone is calling you for help, something has probably gone wrong.
  • Q&A: Microsoft’s TJ Campana Fri, 17 May 2013 16:48:48 +0000
    The Microsoft Digital Crimes Unit has been spearheading botnet takedowns and other anti-cybercrime operations for many years, and it has had remarkable success. But the cybercrime problem isn't going away anytime soon, so the DCU is in the process of building a new cybercrime center here, and soon will roll out a new threat intelligence service to help ISPs and CERT teams get better data about ongoing attacks.
  • PushDo Attackers Adjust Algorithm to Generate .KZ Domains Fri, 17 May 2013 16:25:44 +0000
    Researchers at Seculert discover that the PushDo malware gang has counter-punched a research report by Dell SecureWorks and Damballa outing its use of a domain generation algorithm and has adjusted the DGA to generate just .KZ domains.
  • New Mac Malware Discovered on Attendee Computer at Anti-Surveillance Workshop Fri, 17 May 2013 16:04:17 +0000
    Mac spyware was discovered on the computer of an activist attended a free speech workshop in Oslo.
  • Mozilla Refining Third-Party Cookie Patch in Firefox Fri, 17 May 2013 14:48:22 +0000
    Mozilla CTO Brendan Eich said the organization has not pushed a patch that blocks third-party cookies by default to the Beta version of Firefox 22. Further testing, he said, is needed to address false positives and negatives.
  • At Microsoft, a Sharpened Focus on Cybercrime Thu, 16 May 2013 20:57:45 +0000
    REDMOND, Wash.–Cybercrime has developed in the last few years into a major concern, not just for the consumers and businesses that are victims, but also for governments around the world. Obama administration officials have called it one of the larger threats to the United States economy. While law enforcement agencies handle the investigative and prosecutorial [...]
  • New India-Based Spy Malware Campaign Targeting Pakistanis Thu, 16 May 2013 20:04:21 +0000
    A new malware campaign has been hitting Pakistan hard over the last few months and after a little e-sleuthing, it appears the not-so-stealthy attacks have been originating from nearby India and exploiting a certificate to run its binaries.

# Reddit netsec

# Krebs On Security

# Bruce Schneier's blog

  • Surveillance and the Internet of Things Tue, 21 May 2013 06:15:11 -0500
    The Internet has turned into a massive surveillance tool. We're constantly monitored on the Internet by hundreds of companies -- both familiar and unfamiliar. Everything we do there is recorded, collected, and collated -- sometimes by corporations wanting to sell us stuff and sometimes by governments wanting to keep an eye on us. Ephemeral conversation is over. Wholesale surveillance is...
  • Security Risks of Too Much Security Mon, 20 May 2013 06:34:17 -0500
    All of the anti-counterfeiting features of the new Canadian $100 bill are resulting in people not bothering to verify them. The fanfare about the security features on the bills, may be part of the problem, said RCMP Sgt. Duncan Pound. "Because the polymer series' notes are so secure ... there's almost an overconfidence among retailers and the public in terms...
  • Friday Squid Blogging: Striped Pyjama Squid Pet Sculpture Fri, 17 May 2013 16:57:09 -0500
    Technically, it's a cuttlefish and not a squid. But it's still nice art. I posted a photo of a real striped pyjama squid way back in 2006. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered....
  • Applied Cryptography on Elementary Fri, 17 May 2013 14:59:37 -0500
    In the episode that aired on May 9th, about eight or nine minutes in, there's a scene with a copy of Applied Cryptography prominently displayed on the coffee table. This isn't the first time that my books have appeared on that TV show....
  • Bluetooth-Controlled Door Lock Thu, 16 May 2013 08:45:20 -0500
    Here is a new lock that you can control via Bluetooth and an iPhone app. That's pretty cool, and I can imagine all sorts of reasons to get one of those. But I'm sure there are all sorts of unforeseen security vulnerabilities in this system. And even worse, a single vulnerability can affect all the locks. Remember that vulnerability found...
  • Transparency and Accountability Tue, 14 May 2013 05:48:13 -0500
    As part of the fallout of the Boston bombings, we're probably going to get some new laws that give the FBI additional investigative powers. As with the Patriot Act after 9/11, the debate over whether these new laws are helpful will be minimal, but the effects on civil liberties could be large. Even though most people are skeptical about sacrificing...
  • 2007 NSA Manual on Internet Hacking Mon, 13 May 2013 08:15:20 -0500
    Mildly interesting....
  • Friday Squid Blogging: Squid Festival in Monterey Fri, 10 May 2013 16:26:12 -0500
    It's at the end of May. Note that it's being put on by the Calamari Entertainment Group. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered....
  • The Onion on Browser Security Fri, 10 May 2013 13:49:42 -0500
    Wise advice: At Chase Bank, we recognize the value of online banking­ -- it’s quick, convenient, and available any time you need it. Unfortunately, though, the threats posed by malware and identity theft are very real and all too common nowadays. That’s why, when you’re finished with your online banking session, we recommend three simple steps to protect your personal...
  • Mail Cover Fri, 10 May 2013 06:47:32 -0500
    From a FOIAed Department of Transportation document on investigative techniques: A "mail cover" is the process by which the U.S. Postal Service records any data appearing on the outside cover of any class of mail, sealed or unsealed, or by which a record is made of the contents of unsealed (second-, third-, or fourth-class) mail matter as allowed by law....

# TWITTER

# WIRED Threat Level

# exploit-db.com

# Securiteam