WPScan – WordPress Security Scanner
I came across an interesting tool for us WordPress bloggers..WPScan from http://www.ethicalhack3r.co.uk/security/introducing-wpscan-wordpress-security-scanner/ WPScan is a black box WordPress Security Scanner written in Ruby which attempts to find known security weaknesses within WordPress installations. Its intended use it to be for security professionals or WordPress administrators to asses the security posture of their WordPress installations. The [...]
Continue reading...Do you digitally sign email?
Thursday, June 2, 2011
I’ve been a fan of digital signatures ever since I worked for a PKI company (CertCo) back in 2000. I like the idea that I can send an email and the recipient can tell if someone has tampered with it. Even though I think there have been a couple “year of PKI” it has never [...]
Continue reading...Giving a presentation on APT tonight in Manchester, NH
Thursday, April 21, 2011
At the last meeting of the New Hampshire chapter of ISSA the subject turned to Advanced Threats (APT, SMT, etc). This was driven mostly by the RSA announcement of their breach that happened just prior to the meeting. I was asked to put something together to share at the next meeting. Most of the presentation [...]
Continue reading...RSA Security breached by APT
Thursday, March 17, 2011
EMC has announced that their RSA division has been compromised. It seems the focus of the attack was information on their SecurID product. RSA in the letter from Art Coviello said: While at this time we are confident that the information extracted does not enable a successful direct attack on any of our RSA SecurID [...]
Continue reading...New mass-mailing worm spreading like crazy – VBMania
Thursday, September 9, 2010
Normally I let the vendors communicate this stuff out but this is spreading like crazy. A mass-mailing worm that McAfee is calling VBMania is on the loose. We’ve stopped an ton of these this afternoon. More information here: http://www.avertlabs.com/research/blog/index.php/2010/09/09/widespread-reporting-of-here-you-have-virus/ –Chris
Continue reading...Intel to acquire McAfee for $7.7 Billion
Sunday, August 22, 2010
Most of you have probably heard that Intel announced that it will acquire McAfee for almost $8 billion dollars. What I find interesting is that Intel paid $48 per share or about 60% more than the $30 per share where McAfee had been trading at. There are a lot of discussions about why Intel did [...]
Continue reading...Who’s going to Defcon?
Saturday, July 24, 2010
I will be out in Las Vegas for Defcon. Wed night I will be jumping from vendor party to vendor party. I am meeting a couple colleagues on Friday night. If anyone is interested in grabbing a few beers let me know. Technorati Tags: Defcon
Continue reading...How-to on securing PDF documents
Sunday, December 27, 2009
A friend of mine pointed me to a good article on securing PDF documents. http://secforall.info/2009/06/29/securing-pdfs/ It’s a good tutorial on how to password protect, digitally sign and certify PDF documents. Now if only we could have some intelligence in email clients (or maybe a setting in Acrobat Reader?) that would prohibit or at least strongly [...]
Continue reading...- Record IM video on the network?
- WoW adds 2 factor authentication
- New blog theme
- Twitter + Security = Security Twits
- Security for Web Meetings?
- 3 open InfoSec positions at MIT Lincoln Laboratory
- NAC Panel Discussion: What is the state of NAC?
- ICANN shutting down a Chinese registrar?
- Shoot yourself in the foot in any language
- MIT Lincoln Lab Network Security Software
- Your favorite Mac apps? (8)
- Should I renew my CISSP? (7)
- NAC Panel Discussion: What is the state of NAC? (6)
- Is Data Leak Prevention the next “big thing” in security? (6)
- NitroSecurity files for IPO (5)
- Whitedust.net called it quits? (5)
- Over reliance on industry analysts (4)
- VA loses another PC…36,000 at risk (4)
- Stopping 100% of web proxies? (4)
- Juniper launches a switch line (4)
- APT and attribution
- McAfee acquires NitroSecurity
- RIM fix your Blackberry S/MIME experience, please?
- Some things to look for in your SecurID / Remote Access logs
- WPScan – WordPress Security Scanner
- Do you digitally sign email?
- Giving a presentation on APT tonight in Manchester, NH
- RSA Security breached by APT
- New mass-mailing worm spreading like crazy – VBMania
- Intel to acquire McAfee for $7.7 Billion
Latest Videos
InfoSecPodcast tweets
3 weeks ago
Reading now
Thursday, June 9, 2011
0 Comments