The class started tonight via their vLive platform. It looks like a very interesting course. I will post comments as I go. https://www.sans.org/security-training/reverse-engineering-malware-malware-analysis-tools-techniques-54-mid –Chris
Continue reading...Thursday, October 6, 2011
I read an interesting analysis of the malware involved in the March RSA breach. The analysis was done by J. Oquendo and posted over at Infosec Island. After his analysis of the malware involved he believes that “its inconclusive but points more to RBN than APT.”. Read through his analysis and see what you think. [...]
Continue reading...Tuesday, October 4, 2011
Congrats to the team at, NitroSecurity. They were acquired by McAfee according to this press release today: http://www.mcafee.com/us/about/mcafee-nitrosecurity.aspx Nice job guys and girls. It’s good to see a successful exit. –Chris
Continue reading...Wednesday, July 6, 2011
For those Splunk users out there the 2011 Splunk Users Conference will be August 15 – 17 in San Francisco. http://www.splunk.com/view/SP-CAAAFCW I’ve been a big fan of Splunk for a number of years. Somtimes you just want to search your logs and create / modify the queries on the fly. Splunk gives [...]
Continue reading...Sunday, June 19, 2011
From a mobile device in the enterprise standpoint RIM’s Blackberry devices are extremely popular. Also in the government and military circles it’s a very common platform. There is even a STIG (Security Technical Implementation Guide) published by DISA (Defense Information Systems Agency) to secure the Blackberry Enterprise Server. So why then is the experience so [...]
Continue reading...Saturday, June 18, 2011
Starting Monday July 11th I will be working with a newly formed group at RSA / EMC that is focused on APT and SMT. For 3 years I have been on the front lines of this fight as the IT Security Manager for MIT Lincoln Laboratory, a Federally Funded Research and Development [...]
Continue reading...Wednesday, June 15, 2011
The RSA SecurID token has arguably been the defacto second factor authenticator for many years. Despite the recent breach at RSA I do not see many organizations moving to alternate vendors or other second factor technologies, like PKI / SmartCards or telephone based solutions. In the wake of the RSA breach most companies [...]
Continue reading...Sunday, June 12, 2011
For those so inclined The sixth annual APWG eCrime Researchers Summit call for papers is out, as part of eCrime ’11. eCRS 2011 will bring together academic researchers, security practitioners, and law enforcement to discuss all aspects of electronic crime and ways to combat it, Topics of interests include (but are not limited to): [...]
Continue reading...Bad Behavior has blocked 1012 access attempts in the last 7 days.
Monday, January 16, 2012
0 Comments