RSS

Author Archives | Chris

Chris - who has written 173 posts on InfoSecPodcast.com.


Contact the author

WPScan – WordPress Security Scanner

I came across an interesting tool for us WordPress bloggers..WPScan from http://www.ethicalhack3r.co.uk/security/introducing-wpscan-wordpress-security-scanner/ WPScan is a black box WordPress Security Scanner written in Ruby which attempts to find known security weaknesses within WordPress installations. Its intended use it to be for security professionals or WordPress administrators to asses the security posture of their WordPress installations. The [...]

Continue reading...

Do you digitally sign email?

I’ve been a fan of digital signatures ever since I worked for a PKI company (CertCo) back in 2000. I like the idea that I can send an email and the recipient can tell if someone has tampered with it. Even though I think there have been a couple “year of PKI” it has never [...]

Continue reading...

Giving a presentation on APT tonight in Manchester, NH

At the last meeting of the New Hampshire chapter of ISSA the subject turned to Advanced Threats (APT, SMT, etc). This was driven mostly by the RSA announcement of their breach that happened just prior to the meeting. I was asked to put something together to share at the next meeting. Most of the presentation [...]

Continue reading...

RSA Security breached by APT

EMC has announced that their RSA division has been compromised. It seems the focus of the attack was information on their SecurID product. RSA in the letter from Art Coviello said: While at this time we are confident that the information extracted does not enable a successful direct attack on any of our RSA SecurID [...]

Continue reading...

New mass-mailing worm spreading like crazy – VBMania

Normally I let the vendors communicate this stuff out but this is spreading like crazy. A mass-mailing worm that McAfee is calling VBMania is on the loose. We’ve stopped an ton of these this afternoon. More information here: http://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-virus/ –Chris

Continue reading...

Intel to acquire McAfee for $7.7 Billion

Most of you have probably heard that Intel announced that it will acquire McAfee for almost $8 billion dollars. What I find interesting is that Intel paid $48 per share or about 60% more than the $30 per share where McAfee had been trading at. There are a lot of discussions about why Intel did [...]

Continue reading...

Who’s going to Defcon?

I will be out in Las Vegas for Defcon. Wed night I will be jumping from vendor party to vendor party. I am meeting a couple colleagues on Friday night. If anyone is interested in grabbing a few beers let me know. Technorati Tags: Defcon

Continue reading...

How-to on securing PDF documents

A friend of mine pointed me to a good article on securing PDF documents. http://secforall.info/2009/06/29/securing-pdfs/ It’s a good tutorial on how to password protect, digitally sign and certify PDF documents. Now if only we could have some intelligence in email clients (or maybe a setting in Acrobat Reader?) that would prohibit or at least strongly [...]

Continue reading...

Bad Behavior has blocked 1012 access attempts in the last 7 days.

Rodney's 404 Handler Plugin plugged in.