Security Balancetrying to bring balance to the Force |
 |
I was very excited to read about TCG IF-MAP on Chris Hoff’s blog last week. Chris found that interesting as something that could bring some light to the “cloud nightmare” and to virtualization issues. I like IF-MAP, however, because it raises the security intelligence level on the network. Today most of SIEM installations are working [...]
I was visiting Dan Kaminsky’s blog today and I noticed that he is creating a community council to help on the disclosure of big vulnerabilities like the one he found on DNS and others that followed, including that famous one on TCP that Robert E. Lee and Jack Louis are planning to disclose after vendors [...]
This is yet another case of predictions coming true; Now it’s Kaspersky time to say that malware is changing the way they attack online banking users to defeat two-factor authentication. Tjey even try to create a new security buzzword for that: “For example, two-factor authentication for online banking, which uses a hardware token in addition [...]
I was reading a comment from Shimel mentioning that NAC technology is becoming more mature every day, as we can see more 3rd party products integration. He mentions the integration of a IPS system, what promptly made me wonder about another kind of security product: DLP. Have anybody tried to integrate DLP and/or e-Discovery products [...]
The indictment of 11 people on a mass card theft is all over the news this week. I’ve seen reports about software developed to steal cards, war driving and other stuff that I really don’t know if it’s just bad press or actual facts. There are some good info here and here. Of course PCI [...]
I really promised to myself that I would avoid “look at this post from X” posts here. But today is Friday and I’ve just read something that was so perfectly written and fun that I will break that promise: Read this, from Gunnar Peterson!
Today I read about this VMWare vulnerability on Beaker’s blog. It is related to the possibility of a non-admin user on the host OS to execute code on the guest OS. I read the details of the vulnerability and I understand why VMWare is saying that the described behavior is by design, and can also see [...]
I was reading the post from Hoff where he writes about virtualization and the DMZ, based on a white paper from VMware. I’ve been reading Hoff’s posts (and others with whom he discusses the subject) about virtualization and I thought it would be interesting to also right a little about it. There is a lot [...]
I’m back. OK, almost. Today I spent two hours reading lots of accumulated RSS news, blog postings and others. I was glad to see that nothing very exciting happened during the last weeks, when I was moving to Toronto and wasn’t able to follow the news and post on the blog. Now my life is [...]
Jeff Jones has just published some pretty interesting vulnerability numbers from Q1 2008. Ok, I know that the source is Microsoft, but the numbers and their meanings are very well documented, im my opinion. I’m one of the believers that these numbers show the results of the impressive security initiative from Microsoft. It’s also good [...]
