• CVE-2012-0053
• CVE-2012-0021
• CVE-2012-0931
• CVE-2012-0930
• CVE-2012-0929
• CVE-2012-0814
• CVE-2012-0056
• CVE-2012-0029
• CVE-2011-4622
• CVE-2011-4608
• CVE-2011-4330
• CVE-2011-4325
• CVE-2011-4314
• CVE-2011-4132
• CVE-2011-4110
• CVE-2011-4077
• CVE-2011-3874
• CVE-2011-3626
• CVE-2011-2203
• CVE-2011-1162
• CVE-2012-0807 (suhosin)
• CVE-2012-0806 (bip)
• CVE-2012-0395 (networker)
• CVE-2011-4354 (openssl)
• CVE-2011-4143 (envision)
• CVE-2012-0312 (online_merchant, oscommerce)
• CVE-2012-0311 (oscommerce)
• CVE-2011-1941 (phpmyadmin)
• CVE-2011-1940 (phpmyadmin)
• CVE-2011-4276 (android)
• CVE-2012-0885 (open_source)
• CVE-2011-3479 (pcanywhere)
• CVE-2011-3478 (pcanywhere)
• CVE-2011-4867 (qqpphoto)
• CVE-2011-4866 (kaixin001) …full story

Online Bank Fraud (ggl): One Stanford Client Lost $20 Million, Ex-Executive Testifies - San Francisco Chronicle

Email

6:34 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEO95wWdbWr4fpeDq7DMb_DsKdxiA&url=http://www.sfgate.com/cgi-bin/article.cgi?f%3D/g/a/2012/01/27/bloomberg_articlesLYGXMN6K50Y701-LYHE2.DTL

• One Stanford Client Lost $20 Million, Ex-Executive Testifies - San Francisco Chronicle
• New federal crime unit to police home mortgage fraud - USA TODAY
• Two indicted for home equity loan fraud in Central Valley - Central Valley Business Times
• Calif. investigating Lap-Band weight loss surgery - San Francisco Chronicle
• A Press Release distribution service of EIN News - EIN News (press release)
• Buried in losses on and off the field, family must clear many hurdles to ... - ESPN
• Combating the innovative crook - ABA Banking Journal
• Affinity fraud - The Economist
…full story

Power Grid (ggl): Asean expected to integrate power grids by 2020 for regional power security ... - The Borneo Post

Email

5:06 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEPnmH2gxLAIwbKLVEX85t2SNJGzQ&url=http://www.theborneopost.com/2012/01/28/asean-expected-to-integrate-power-grids-by-2020-for-regional-power-security-says-thai-energy-expert/

• Asean expected to integrate power grids by 2020 for regional power security ... - The Borneo Post
• Clean energy doesn't always bring security for military - Environment & Energy Publishing
• Asean Expected To Integrate Power Grids By 2020 - Bernama
• Feds Seek Stronger Security For Power Grid - InformationWeek
• Smart Grid Initiatives Address Cyber Security, Renewable Energy Intermittency - RenewableEnergyWorld.com
• Security-constrained unit commitment with wind generation and compressed air ... - Power Engineering Magazine
• Cyber Security Issues and Solutions - Emergency Management (blog)
• IBM and VELCO to Build Next Generation Communications Network for Vermont ... - MarketWatch (press release)
…full story

Black Hat (google): Dana White calls out Internet hackers, they respond by releasing his alleged ... - Yahoo! Sports (blog)

Email

4:16 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGDG9OGwlwC4obVEtdibABrXCfRLQ&url=http://sports.yahoo.com/blogs/mma-cagewriter/dana-white-calls-internet-hackers-respond-releasing-personal-142312772.html

• Dana White calls out Internet hackers, they respond by releasing his alleged ... - Yahoo! Sports (blog)
• After SOPA, Anonymous hackers out to get world governments - GMA News
• Symantec: disable pcAnywhere until fully patched - CSO Magazine
• Zappos Hacked: Top 5 Notorious Hacks of All Time - International Business Times
• Facebook's Reward for Bug Hunters - BusinessWeek
• Episode Recap: Charlies Angels - 1.06: "Black Hat Angels" - TVStar.com Television News
• Experts divided on `grey hat' hackers - ITWorld Canada
• OxOmar is not Saudi but a foreign agent - Arab News
…full story

White Hat (google): Dana White calls out Internet hackers, they respond by releasing his alleged ... - Yahoo! Sports (blog)

Email

4:16 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGDG9OGwlwC4obVEtdibABrXCfRLQ&url=http://sports.yahoo.com/blogs/mma-cagewriter/dana-white-calls-internet-hackers-respond-releasing-personal-142312772.html

• Dana White calls out Internet hackers, they respond by releasing his alleged ... - Yahoo! Sports (blog)
• Facebook's Reward for Bug Hunters - BusinessWeek
• Facebook hands out White Hat debit cards to hackers - ZDNet Asia
• After SOPA, Anonymous hackers out to get world governments - GMA News
• Zappos Hacked: Top 5 Notorious Hacks of All Time - International Business Times
• Experts divided on `grey hat' hackers - ITWorld Canada
• Tool used in Anonymous Megaupload campaign - Help Net Security
• OxOmar Is Not Saudi But A Foreign Agent – OpEd - Eurasia Review
…full story

Antivirus (google): 2 anti-virus programs, 1 computer are recipe for trouble - The Seattle Times

Email

2:50 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHxxFUp38diaFJTX8mpLqaDlk9MQw&url=http://seattletimes.nwsource.com/html/businesstechnology/2017335993_ptmrsh28.html

• 2 anti-virus programs, 1 computer are recipe for trouble - The Seattle Times
• Drive-by-download Attack Exploits Critical Vulnerability in Windows Media Player - PCWorld
• Symantec warns pcAnywhere users of remote software code hack - GCN.com
• Symantec Recommends Disabling PcAnywhere and Waiting for Security Patches - PCWorld
• Malware Antivirus Software Download - Brunei News, Brunei Headlines from Brunei fm
• What if a virus infected a virus? 'Frankenware' spotted by security firm - msnbc.com
• Scary New Virus Will Make Your Computer Cry - WebProNews
• Don't miss the end-of-January software sale - BetaNews
…full story

Wash Post SecFix: Gingrich professes shock at Romney’s ‘dishonest’ debate performance

Email

2:11 PM Jan 27th

http://feeds.washingtonpost.com/click.phdo?i=e039cec1fdf38bb087c437df49264893

• Gingrich professes shock at Romney’s ‘dishonest’ debate performance
• Two GOP revolutions, two different outcomes
• Aneesh Chopra leaving the White House, likely to run for Virginia lieutenant governor
• Obama outlines incentive plan to reduce college tuition costs
• Santorum pushed to limit malpractice awards but sought larger payout for wife
• Ron Paul signed off on racist newsletters in the 1990s, associates say
• Obama exchange with Arizona Gov. Jan Brewer reveals his testy side
• Florida primary playlist: A Fix List!
…full story

Bugtraq: AdaCore Security Advisory SA-2012-L119-003 Hash collisions in AWS

Email

12:40 PM Jan 27th

http://seclists.org/bugtraq/2012/Jan/168

• AdaCore Security Advisory SA-2012-L119-003 Hash collisions in AWS
• [HITB-Announce] Reminder: HITB2012AMS Call For Papers Closing Soon
• [ GLSA 201201-15 ] ktsuss: Privilege escalation
• [SECURITY] [DSA 2394-1] libxml2 security update
• ESA-2012-007: RSA, The Security Division of EMC, announces security fixes for RSA enVision
• ESA-2012-005: EMC NetWorker buffer overflow vulnerability
• Cisco Security Advisory: Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability
• ZDI-12-018 : Symantec PCAnywhere awhost32 Remote Code Execution Vulnerability
…full story

Blow Fish (google): Download itunes 9.1.1 - Groovy Green

Email

12:20 PM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHbXimnRkx0BwyMM3ghzHRq7nfzHg&url=http://www.groovygreen.com/groove/rssbox/download-itunes-911.php

• Download itunes 9.1.1 - Groovy Green
• Mozy releases 'Stash' file syncing service - Computerworld
• ContaxCRM Version 3 - Premium Small Business CRM for Mac OSX and Windows - prMac (press release)
• myVault: Encrypted Personal Information, File and Document Management - prMac (press release)
• Canadian Web Host SherWeb Launches SkyNox Online Backup - Tophosts
• LibreOffice gets 3.5 release candidate - ZDNet UK (blog)
• mSecure for Android is Now Available On the Nook Color and Nook Tablet - San Francisco Chronicle (press release)
• SherWeb Presents Backup Solution SkyNox - TheHostingNews.com (press release)
…full story

Daily Dave: Cyber Politics By Other Means

Email

10:47 AM Jan 27th

http://seclists.org/dailydave/2012/q1/14

• Cyber Politics By Other Means
• Alligators
• Open Bars
• Security Event Horizons
• New Paper - Acquisition and Analysis of Volatile Memory from Android Devices
• Re: Symantec AV source compromised and the questions it raises
• Symantec AV source compromised and the questions it raises
• Symantec AV source compromised and the questions it raises
…full story

Ctrfeit ATM/Debit (ggl): Why Skimming Won't Go Away - BankInfoSecurity.com

Email

9:20 AM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEplnOWsZhvbb25Um0o44pEE2uFag&url=http://www.bankinfosecurity.com/articles.php?art_id%3D4448

• Why Skimming Won't Go Away - BankInfoSecurity.com
• Security cameras near ATM capture fake cop - WAVE
• Money Monday: Don't Get “Skimmed” — Protect Your Debit Card - BET
• Fake cops get away with hundreds of dollars after traffic stop - WAVE
• Lankans held with 70 fake debit cards in Velachery - Deccan Chronicle
• Canadian man gets 18 years for credit fraud - Fox News
• 'Porn producers' are scamming victims in Kissimmee - Orlando Sentinel
• Feds Bust $1.5 Million ATM Skimming Scheme - InformationWeek
…full story

OSS Security (ggl): 6 security companies to watch - PC Advisor

Email

1:02 AM Jan 27th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNFXeS1d8m1GMAzKYfB2XV4NtT2Fow&url=http://www.pcadvisor.co.uk/news/security/3333050/6-security-companies-watch/

• 6 security companies to watch - PC Advisor
• Four Signs That WebOS Is on the Right Track - PCWorld
• Mali rebels push south to open third front - Reuters
• NYSE Takes Stock of Open Source CMS - Network World
• Linux vendors urgently patch a security flaw - Inquirer
• NSA releases ultra-secure open source Android derivative - Android Community
• Cloud Computing, Security, Big Data: 10 Enterprise Linux Adoption Drivers - eWeek
• FBI Seeks Data-Mining App for Social Media - InformationWeek
…full story

Twitter DOS (ggl): The FBI wants to spider social media to prepare for the worst - VentureBeat

Email

10:18 PM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHMbPvnU5uXjVLBA5t7x7VEC7eQjA&url=http://venturebeat.com/2012/01/26/fbi-social-media-app/

• The FBI wants to spider social media to prepare for the worst - VentureBeat
• Facebook under Denial of Service Attack, confirms AnonSec - Fudzilla
• Government websites hit by attacks - Belfast Telegraph
• Anonyupload link denied - Stuff.co.nz
• The Anonymous Army Wants YOU - PC Magazine
• Facebook downtime triggers Anonymous hacking rumors - GMA News
• Alcatel-Lucent and Arbor Networks Team Up in the Fight Against 'Denial-of ... - MarketWatch (press release)
• Twitter users are being tricked into joining Anonymous cyber attacks on US ... - Daily Mail
…full story

PKI (google): GSA's first Cloud-based physical access system implemented at federal building ... - Government Security News

Email

3:33 PM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHcb2r067JAmwl22YwcZgrWQ6VXQw&url=http://www.gsnmagazine.com/node/25529?c%3Daccess_control_identification

• GSA's first Cloud-based physical access system implemented at federal building ... - Government Security News
• Frost & Sullivan Applauds DigiCert, Inc. for its Flexible SSL Certificate ... - MarketWatch (press release)
• GSA's First Cloud-Based Physical Access System Is Implemented At Neal Smith ... - PR Web (press release)
• Long road ahead for e-health records - The Australian
• Chip Based ID Cards to Be Distributed in Coastal Areas - VAdvert Press Center (press release)
• Thales and Infoblox Help Protect Internet Integrity - EON: Enhanced Online News (press release)
• VASCO Data Security International (VDSI) Downgraded by Zacks Investment ... - LocalizedUSA
• Equinox Payments Achieves PCI PTS 3.x for Next-Generation L5000 Product Family - MarketWatch (press release)
…full story

Bio Lab Security (ggl): Has Bird Flu Biology Opened Bioterror Box? - Sci-Tech Today

Email

2:17 PM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNFkrEE1jpJVt4doj-ST_PFgaVPuaw&url=http://www.sci-tech-today.com/news/Scientists-Engineer-Bioterror-Fears/story.xhtml?story_id%3D122002KZ6V30

• Has Bird Flu Biology Opened Bioterror Box? - Sci-Tech Today
• Defense Authorization Measure Yields Less for Chem-Bio Defense, More for ... - Genetic Engineering News
• Bill Would Require Independent Study of X-Ray Body Scanners - ProPublica
• Nuclear Terrorism: A Rationale Choice For Terrorists? – Analysis - Eurasia Review
• 45m boost from the BBSRC to help regions bioscientists meet global economic ... - Loughborough News
• Inside BU's maximum-security 'biolab' - NECN
• Zogenix and Battelle to Collaborate on Advanced Drug Delivery Technology - MarketWatch (press release)
• Energetic New Public Health Faculty Embrace SLU's Mission - Saint Louis University
…full story

IDS (google): CISF asked to take over airport boundary security system - Indian Express

Email

1:45 PM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEzsdWNrOWXz35V3ti-7TuujWEqjg&url=http://www.indianexpress.com/news/cisf-asked-to-take-over-airport-boundary-security-system/904433/

• CISF asked to take over airport boundary security system - Indian Express
• Magal Wins a $2.1 Million Contract to Secure Perimeters of Two Prisons in ... - MarketWatch (press release)
• Quintron Announces Initial System Delivery to White Sands Missile Range - PR Web (press release)
• DreamHost resets passwords after database breach - Computerworld
• Sourcefire Stays True To Its Roots - Network World
• Fluke Networks Releases New Signatures to Protect Against WLAN Vulnerabilities - Sacramento Bee
• 6 security companies to watch - PC Advisor
• Stonesoft introduces IPS-1302 for demanding Web and encrypted traffic inspection - Reuters
…full story

VPN (google): PRIVATE WiFi Celebrates Data Privacy Day (January 28th) with Exciting Contests ... - PR Web (press release)

Email

12:05 PM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNFD_8V3B-K08WX-bFljQrQuvkg2DA&url=http://www.prweb.com/releases/2012/1/prweb9142067.htm

• PRIVATE WiFi Celebrates Data Privacy Day (January 28th) with Exciting Contests ... - PR Web (press release)
• McHenry Savings Bank Dramatically Enhances Network Performance, Achieves Cost ... - MarketWatch (press release)
• 56% of Brits don't check if public Wi-Fi is encrypted before logging on - PC Advisor
• Giant Tiger Selects Fortinet Enterprise Network Security Solution to Protect ... - MarketWatch (press release)
• Think twice before accessing public WiFi Networks - Computer Business Review (blog)
• F5 Networks 'Fixes' Data Center Security - NetworkComputing.com
• HotSpot Shield strengthens VPN with anti-malware wall - CNET
• SCADA Systems in Railways Vulnerable to Attack - eWeek
…full story

PandaLabs: Katy Perry and Russell Brand baits to spread a new Facebook worm

Email

9:49 AM Jan 26th

http://pandalabs.pandasecurity.com/katy-perry-and-russell-brand-baits-to-spread-a-new-facebook-worm/

• Katy Perry and Russell Brand baits to spread a new Facebook worm
• Sex, lies and Twitter
• Megaupload and the cybercrime fight
• The Rise of the Ransomware
• 2012 Security Trends
• Could targeted attacks be avoided?
• Fake Cloud AV 2012
• Hong Kong, AVAR 2011
…full story

Infosec News: DHS disputes memo on purported railway computer breach

Email

1:39 AM Jan 26th

http://seclists.org/isn/2012/Jan/80

• DHS disputes memo on purported railway computer breach
• Re: The digital hacktivist
• IT pros say data breach assessment is more valuable than notification, study says
• DOD to allow Android on classified networks
• Symantec advises users to turn off PCAnywhere in hack aftermath
• Newt Threatens China and Russia With Cyberwar
• Royal Canadian Navy officer charged with espionage
• 10K Reasons to Worry About Critical Infrastructure
…full story

Smart Cards (google): Sony's 'CLEFIA' Encryption Technology Adopted as an International Standard - MarketWatch (press release)

Email

12:34 AM Jan 26th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEhDxkZGc41es8Sh6fb3sQocREG9w&url=http://www.marketwatch.com/story/sonys-clefia-encryption-technology-adopted-as-an-international-standard-2012-01-26

• Sony's 'CLEFIA' Encryption Technology Adopted as an International Standard - MarketWatch (press release)
• Rocstor's Amphibious HDD Kicks Data Security Up a Notch - Tom's Hardware Guide
• Freescale, Inside Secure team on smart-meter reference design - EDN.com
• LANL says researchers have developed rock-solid quantum cryptography for ... - Government Security News
• Sykipot Trojan Hijacks Department of Defense Authentication Smart Cards - CSO
• Articles submitted by industry partners - ABA Banking Journal (blog)
• Rocstor's Amphibious Hard Drive Secures Your Data - PC Magazine
• Supreme Court Declines To Hear EchoStar Appeal In NDS Suit - Multichannel News
…full story

Twitter worms (ggl): Women want to open a huge can of worms - Toronto Star

Email

11:43 PM Jan 25th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEQj9DGui3gmNzITlQvwpgE-kqL0w&url=http://www.thestar.com/living/article/1120858--kingston-s-boy-wonder-chef-turns-21

• Women want to open a huge can of worms - Toronto Star
• Worst celebrity tattoos - New York Daily News
• Twitter Worm Hits #mepolitics - Down East
• How to block Twitter spam & scams right now - Digitaltrends.com
• 'McDialysis? I'm Loving it!': McDonald's Twitter Promo Fail - ABC News (blog)
• COMPLY: Social media hacking seen as risk to advisers - Reuters
• Are Viruses Breeding In The Wild? - PC Magazine
• Identities of Koobface Facebook Worm Cyber-criminals Outed - ITProPortal
…full story

Snort (google): Sourcefire Stays True To Its Roots - Network World

Email

11:45 PM Jan 24th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGZwY8sFT7Wad_QujLE1WvpZtRWOA&url=http://www.networkworld.com/community/node/79655

• Sourcefire Stays True To Its Roots - Network World
• Sourcefire jumps into anti-malware market - Register
• Sourcefire Schedules Fourth Quarter and Full Year 2011 Financial Results ... - MarketWatch (press release)
• LogRhythm and Sourcefire Partner to Provide Joint Customers Sophisticated ... - MarketWatch (press release)
• FBN Securities Begins Coverage on Sourcefire (FIRE) - LocalizedUSA
• Latest Snort provides alarm for industrial control systems - The H
• Measuring Open Source Success - Network World
• When Open Source Doesn't Do It Anymore - Network World
…full story

US-Cert Alerts: TA12-024A: "Anonymous" DDoS Activity

Email

9:40 PM Jan 24th

http://www.us-cert.gov/channels/techalerts.rdf

• TA12-024A: "Anonymous" DDoS Activity
• TA12-010A: Microsoft Updates for Multiple Vulnerabilities
• TA12-006A: Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack
• TA11-350A: Adobe Updates for Multiple Vulnerabilities
• TA11-347A: Microsoft Updates for Multiple Vulnerabilities
• TA11-312A: Microsoft Updates for Multiple Vulnerabilities
• TA11-286A: Apple Updates for Multiple Vulnerabilities
• TA11-284A: Microsoft Updates for Multiple Vulnerabilities
• TA11-256A: Microsoft Updates for Multiple Vulnerabilities …full story

OLEX Wazi: Webnetwork 6.0.7.0 and prior [High]

Email

4:25 PM Jan 24th

http://olex.openlogic.com/wazi/2012/webnetwork-6-0-7-0-and-prior-high/

• Webnetwork 6.0.7.0 and prior [High]
• Webnetwork 6.0.7.0 and prior [Medium]
• Webnetwork 6.0.7.0 and prior [Medium]
• Glucose 2 beta_stage_5.1 and prior [Medium]
• Chrome 16.0.912.74 and prior [High]
• Chrome 16.0.912.76 and prior [High]
• Chrome 16.0.912.76 and prior [High]
• Chrome 16.0.912.76 and prior [High]
…full story

Honeypots: [HONEYPOTS] Cyber Warfare / Network Defense Simulation

Email

1:02 PM Jan 24th

http://seclists.org/honeypots/2012/q1/1

• [HONEYPOTS] Cyber Warfare / Network Defense Simulation
• Cyber Warfare / Network Defense Simulation
• CanSecWest 2012 Mar 7-9; 2nd call for papers, closes next week, Monday. Dec 5 2011
…full story

ISC Handlers Diary: Infocon: green

Email

11:48 PM Jan 22nd

http://isc.sans.edu/diary.html?rss

• Infocon: green
• Mailbag - "Attacks", (Sun, Jan 22nd)
• ISC StormCast for Monday, January 23rd 2012 http://isc.sans.edu/podcastdetail.html?id=2275, (Mon, Jan 23rd)
• Javascript DDoS Tool Analysis, (Sun, Jan 22nd)
• DNS Sinkhole Scripts Fixes/Update, (Sat, Jan 21st)
• The privacy hodgepodge and IP Addresses, (Sat, Jan 21st)
• ISC StormCast for Friday, January 20th 2012 http://isc.sans.edu/podcastdetail.html?id=2272, (Fri, Jan 20th)
• WHOIS contacts are your friends, (Thu, Jan 19th)
…full story

Linux Worms (ggl): Group behind the Facebook 'Koobface' malware uncovered - Computer Business Review

Email

7:07 AM Jan 17th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNH--UHaCny89XVJYs4HmZx2SEqWQw&url=http://www.cbronline.com/news/the-group-behind-the-facebook-koobface-malware-has-been-uncovered-170112

• Group behind the Facebook 'Koobface' malware uncovered - Computer Business Review
• O'Fallon Bookstore Owner Proves the Early Bird Gets the Worm - Patch.com
• In XBill, uno dei videogiochi open source classici di tipo arcade, la lotta ... - Paperblog
…full story

Google Security Blog: Tech tips that are Good to Know

Email

12:39 AM Jan 17th

http://feedproxy.google.com/~r/GoogleOnlineSecurityBlog/~3/QW0ETABR7Rs/tech-tips-that-are-good-to-know.html

• Tech tips that are Good to Know
• Expanding Safe Browsing Alerts to include malware distribution domains
• Reminder: Safe Browsing version 1 API turning down December 1
• Protecting data for the long term with forward secrecy
• Safe Browsing Alerts for Network Administrators is graduating from Labs
• Gmail account security in Iran
• An update on attempted man-in-the-middle attacks
• Four Years of Web Malware
…full story

SANS Lab: Stephen Northcutt's Emerging Trends in IT and Security 2012 - 2014

Email

6:18 PM Jan 5th

http://www.sans.edu/research/security-laboratory/article/2012_emerging_trends

• Stephen Northcutt's Emerging Trends in IT and Security 2012 - 2014
• Stephen Northcutt's Security Predictions 2012 and 2013
• The Certificate Signing Trust Model Under Stress As An Industrial Security Model
• Bill Pfeifer, Juniper Networks
• Security Predictions 2012 & 2013 - The Emerging Security Threat
• The Attack Surface Problem
• Security Leadership Essentials Fairway Markers
• Eric Cole Emerging Threats Summary 2010
…full story

Macworld security: Dragon Dictation adds privacy setting

Email

2:33 PM Nov 21st

http://rss.macworld.com/click.phdo?i=32436a2ac436be943ffe19c0f9a9426d

• Dragon Dictation adds privacy setting
• Adobe offers advice on avoiding new Reader attack
• Adobe warns of Reader, Acrobat attack in the wild
• New Facebook privacy choices help business users
• Facebook and Google: Contrasts in privacy
• Adobe Flash's security woes: How to protect yourself
• Facebook simplifies privacy options
• E-mail and the advantages of deception
…full story

SANS AppSec: "Password Tracking in Malicious iOS Apps"

Email

2:11 PM Aug 23rd

http://feedproxy.google.com/~r/SansApplicationSecurityBlog/~3/9ZAHuDN9Y0g/oauth-mobile-hack-password-tracking-in-malicious-ios-apps

• "Password Tracking in Malicious iOS Apps"
• "The C14N challenge "
• "Spot the Vuln \u0096 Boundaries - SQL Injection"
• "Spot the Vuln - Boundaries"
• "Spot the Vuln - Floods - SQL Injection"
…full story

SANS News Bites: SANSFIRE 2011

Email

10:49 PM Mar 25th

http://www.sans.org/info/74039

• SANSFIRE 2011
• SSL Security Compromised (March 23, 2011)
• Managing Effects of RSA SecurID Breach (March 23, 2011)
• Attack Code Targets SCADA Systems (March 22 & 23, 2011)
• European Commission Targeted in Cyber Attack (March 23 & 24, 2011)
• Facebook Traffic on AT&T Servers Detoured Through China (March 24, 2011)
• Possible Explanation for Gmail Troubles in China (March 24, 2011)
• Mozilla Releases Firefox 4 (March 23, 2011)
…full story

SANS Reading Room: SANSFIRE 2011

Email

4:02 PM Mar 25th

http://www.sans.org/info/74039

• SANSFIRE 2011
• Four Attacks on OAuth - How to Secure Your OAuth Implementation
• Security Vulnerabilities and Wireless LAN Technology
• Animal Farm: Protection From Client-side Attacks by Rendering Content With Python and Squid.
• Auditing for Policy Compliance with QualysGuard and CIS Benchmarks
• Tracking Malware With Public Proxy Lists
• Application Whitelisting: Panacea or Propaganda
• Protecting Users: The Importance Of Defending Public Sites
…full story

SANS Thought Leaders: Bill Pfeifer, Juniper Networks

Email

6:24 PM Mar 4th

http://www.sans.org/thought-leaders/pfeifer_thought_lead#paper

• Bill Pfeifer, Juniper Networks
• Chris Pogue, Senior Security Analyst
• John Kanen Flowers
• Kees Leune, Leune Consultancy, LLC
• Joel Yonts, CISO
• Maury Shenk, TMT Advisor, Steptoe & Johnson
• Chris Wysopal, CTO, Veracode
• Amir Ben-Efraim, CEO, Altor Networks
…full story

Travel Security: Current security levels

Email

8:26 PM Sep 14th

http://travelsecurity.blogspot.com/2010/09/current-security-levels.html

• Current security levels
• Counter Terror Gazette
• High tech airport security
• More threats, more security
• Chris Elliott on Airplane Geeks Podcast
• TSA subpoenas bloggers
• Should we fire the TSA?
• Obama on Airline Security
…full story

RSA Blog: Big Steps Toward Managing Security and Compliance for Virtual Infrastructure

Email

7:07 PM Sep 1st

http://www.rsa.com/blog/blog_entry.aspx?id=1704

• Big Steps Toward Managing Security and Compliance for Virtual Infrastructure
• Speaking of Security Podcast #197
• The Cloud has a Silver Lining
• Popularity of automated stores in the black market increase as source code is traded in "kits"
• Speaking of Security Podcast #196
• Only You Can Prevent (Internet) Forest Fires: driving online safety and security home
• Nation States and Mobile Devices: It's Time to Listen
• Payment Security Insight from the Verizon 2010 Data Breach Investigations Report
…full story

SecurityWatch (ZD): Microsoft Announces Security Tool and Adobe Partnership

Email

11:27 AM Jul 28th

http://blogs.pcmag.com/securitywatch/2010/07/microsoft_announces_security_t.php

• Microsoft Announces Security Tool and Adobe Partnership
• Pirated Copies of StarCraft 2 Infected With Malware
• Apple Issues Safari Updates
• Fake Firefox Flash Update is Rogue
• Webroot Antivirus Worth the Wait
• CitiGroup Warns of Severe Privacy Issue With iPhone App
• Spoofing Hack Against WPA2 Revealed
• Quick Firefox Update Fixes Plugin Crash Bug
…full story

Cloud Security Alliance and IEEE Join Forces to Identify Cloud Security Standards Requirements For IT Practitioners

Email

3:21 PM Feb 18th

http://www.businesswire.com/portal/site/home/permalink/?ndmViewId=news_view&newsId=20100218006681&newsLang=en

• The Cloud Security Alliance (CSA), a not-for-profit organization formed to promote the use of best practices for providing security assurance within cloud computing, and IEEE, the world's leading professional association for the advancement of technology, today announced they are joining forces to ensure that best practices and standards are developed and available to provide security assurance for cloud computing. As a result of this collaboration, CSA and IEEE have been conducting a survey to identify and define the most critical security concerns surrounding enterprise cloud computing. …full story

Feed Name	Feed Alias (15 characters, no spaces or punctuation, case insensitive)
		http://webpartner.com/SecurityStuff

Hey Friend!

Landon Cox

is using WebPartner.

Add Feed