New Blog Post: Keep Calm and Deploy EMET

Posts Tagged ‘cert’

New Blog Post: Keep Calm and Deploy EMET

By Perry Varanoid on Wednesday, May 8th, 2013 | No Comments

This blog post provides information about an effective approach to blocking exploits of CVE-2013-1347, the Internet Explorer 8 CGeneric Element object use-after-free vulnerability.

New Blog Entry: Don’t Sign that Applet!

By Perry Varanoid on Tuesday, April 30th, 2013 | No Comments

This blog post describes how Oracle’s new guidance for Java applets may cause more harm than good.

New Blog Entry: Finding Patterns of Malicious Use in Bulk Registrations

By Perry Varanoid on Wednesday, April 24th, 2013 | No Comments

This blog post describes how finding patterns in bulk registrations can help identify potentially malicious domains.

GeoIP in Your SOC (Security Operations Center)

By Perry Varanoid on Wednesday, April 17th, 2013 | No Comments

This blog entry describes how to use geoIP to view data and help your network situational awareness.

New Blog Entry: Second Level Domain Usage in 2012 for Common Top Level Domains

By Perry Varanoid on Thursday, April 4th, 2013 | No Comments

This blog post looks at second level domain usage in 2012 for the most common generic Top Level Domains.

New Blog Entry: The Growth of IPv6 Announcements

By Perry Varanoid on Wednesday, March 27th, 2013 | No Comments

This blog post presents a method for assessing how popular IPv6 is on the internet.

Slovenian Police cracks down on a gang netting almost 2 million from companies via e-banking hacks

By Perry Varanoid on Saturday, March 23rd, 2013 | No Comments

“On Thursday, 21 March 2013, the Slovenian Police performed 12 house searches and detained five Slovenian citizens in a coordinated action that concludes the investigation of series of attacks on smaller companies via the internet that started in mid-2012. SI-CERT (the Slovenian national Computer Emergency Response Team) started receiving reports in mid-2012 on attacks that involved malware that upon infecting the victim's computer logged passwords and installed components for unauthorized remote access by miscreants. The malware was delivered via e-mail and was targeted towards the accounting personnel in SMEs….”

ENISA 8th annual workshop 'CERTs in Europe' 21-22 May 2013

By Perry Varanoid on Friday, March 22nd, 2013 | No Comments

“ENISA 8th annual workshop 'CERTs in Europe' – Part I is an opportunity to provide EU national/governamental CERT teams technical specialists hands-on training, and additionally to offer a chance to exchange contacts. Participants get to know and meet again other CERT team members, and share their opinions about best practices and experiences.