In case you missed it, I put together a blog post last week on the OWASP AppSec EU Security Conference in Trinity College, Dublin, Ireland with slides, pictures and experience Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “I would recommend to store at least half a …
Category Index Hacking Incidents / Cybercrime Unpatched Vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Cloud Security Crytography Privacy Security FAIL General Outrageous Funny / Hilarious Hacking Incidents / Cybercrime Document claims LulzSec has obtained 2011 UK Census records [www.v3.co.uk] Infamous hacking group LulzSec is claiming to have obtained the entire 2011 …
Update 02/07/2011: Arian Evans recently clarified he is really “Arian Evans” and not “Adrian Lane”, so I fixed that in the post below. Arian Evans gave the talk on the Six Application Security Metrics. Apologies for confusing the names :). Update 23/06/2011: Dreyer just clarified to me that int3pids were really third and not first …
Smile! it’s Friday! 🙂 In case you missed it I put together a blog post last week regarding my personal experience on the CISSP certification process, etc: CISSP exam, materials, preparation and experience Feedback and/or contributions to make this better are appreciated and welcome Highlighted quotes of the week: “A pen test should be a …
Category Index Hacking Incidents / Cybercrime Unpatched vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Forensics / Reverse Engineering Cryptography Wireless Security Mobile Security Cloud Security Privacy / Censorship Security FAIL Off Topic Funny Hacking Incidents / Cybercrime Incident Analysis: Million Dollars Lost In A Minute [carnal0wnage.attackresearch.com] Dudes, I and two other …
Update 02/08/2011: This post tends to receive spam in the comments. I am sorry about that and I try to remove it as soon as I see it. You can read about where the spam is coming from here. Summary: I recently got word that I passed the CISSP exam. It took exactly 1 month …
Update 13/06/2011: Replaced “this guy” by “Kacper Szcześniak”, I was given his name today, thanks Marek! NOTE: Thank you to the Confidence team for letting me link to many of their images directly. Please note that there are more photos than I can use in a blog post, for the full listing of official photos …
Thanks to Tadek and Shaun for contributing to this security bulletin NOTE: I am still trying to catch up, some news items are a bit dated but worth mentioning, I tried to put newer items at the top of each section so that if you see something dated you already saw you can skip the …
Category Index Hacking Incidents / Cybercrime Unpatched vulnerabilities Software Updates Business Case for Security Web Technologies Network Security Database Security Mobile Security Cloud Security Privacy / Censorship General Security FAIL Funny Hacking Incidents / Cybercrime Bank of America data leak destroys trust [www.latimes.com] The far-reaching fraud serves as a cautionary tale for all consumers who …
Update 19:00 – Also related to this is this post by Carlos Perez, Unfortunately the script is not yet in the metasploit trunk today. But you can download it and copy it to the appropriate folders in the meantime. So, I compromised a Win2k8 R2 x64 host during a pen test and wanted to dump …
