Twitter
LinkedIn
RSS

Posts Tagged ‘events’


Sophos's chart of spam origin, accounting for population, makes fascinating reading http://t.co/nvvkDnuPqS

Sophos's chart of spam origin, accounting for population, makes fascinating reading http://t.co/nvvkDnuPqS — 24 retweets 7 favorites

Read More...

Testing your website for the heartbleed vulnerability with nmap, (Fri, Apr 18th)

We have received reports by many readers about buggy tools to test for the heartbleed vulnerability. Today I want to show you how easy it is to check for this vulnerability using a reliable tool as nmap. You just need to trigger a version scan ( -sV ) along with the script ( ssl-heartbleed ).

Read More...

Looking for malicious traffic in electrical SCADA networks – part 2 – solving problems with DNP3 Secure Authentication Version 5, (Thu, Apr 17th)

I received this week a very valuable e-mail from the DNP Technical Committee Chair, Mr. Adrew West, who pointed an excellent observation and it’s the very slow adoption of DNP3 Secure Authentication Version 5, which is the latest security enhancement for the DNP3 protocol

Read More...

ISC StormCast for Thursday, April 17th 2014 http://isc.sans.edu/podcastdetail.html?id=3939, (Thu, Apr 17th)

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read More...

Heartbleed CRL Activity Spike Found, (Wed, Apr 16th)

It looks like, as I had suspected, the CRL activity numbers we have been seeing did not reflect the real volume caused by the OpenSSL Heartbleed bug. This evening I noticed a massive spike in the amount of revocations being reported by this CRL: http://crl.globalsign.com/gs/gsorganizationvalg2.crl The spike is so large that we initially thought it was a mistake, but we have since confirmed that it’s real! We’re talking about over 50,000 unique revocations from a single CRL: This is by an order of magnitude the largest spike in revocation activity seen in years, according to our current data. We have set up a new page for everyone to monitor the activity as well as see how we are obtaining this data

Read More...

ISC StormCast for Wednesday, April 16th 2014 http://isc.sans.edu/podcastdetail.html?id=3937, (Wed, Apr 16th)

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read More...

New Feature: Monitoring Certification Revocation Lists https://isc.sans.edu/crls.html, (Wed, Apr 16th)

—— Johannes B. Ullrich, Ph.D. SANS Technology Institute Twitter (c) SANS Internet Storm Center.

Read More...

First Heartbleed victims go public: Canada's tax authority Mumsnet (UK parenting website with 1M users)

First Heartbleed victims go public: Canada's tax authority Mumsnet (UK parenting website with 1M users) — 8 retweets 2 favorites

Read More...

ISC StormCast for Tuesday, April 15th 2014 http://isc.sans.edu/podcastdetail.html?id=3935, (Tue, Apr 15th)

(c) SANS Internet Storm Center.

Read More...

Reverse Heartbleed Testing, (Sun, Apr 13th)

I wanted to know if the tools/software I execute regularly are vulnerable to scraping my system memory.  Now the reverse heartbleed scenario is very possible, but the likelihood seems to be much more of a non-issue.   Seeing is still believing in my book

Read More...