Re: [funsec] NO MORE ZERO DAYS
Especially considering that at least 70% of all malware comes from social engineering... This article is garbage. -Original Message- From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org] On Behalf Of Larry Seltzer Sent: Friday, February 04, 2011 6:42 AM To: Hubbard, Dan; funsec Subject: Re: [funsec] NO MORE ZERO DAYS I saw this when it came out. I think he's using the term zero day to refer to unknown malware, although how they solve that I couldn't say. -Original Message- From: funsec-boun...@linuxbox.org [mailto:funsec-boun...@linuxbox.org] On Behalf Of Hubbard, Dan Sent: Thursday, February 03, 2011 11:59 AM To: funsec Subject: [funsec] NO MORE ZERO DAYS Hooray (wink wink nudge nudge say no more say no more) http://www.computerworld.com/s/article/9206366/Intel_developing_security_g ame_changer_ DAN HUBBARD CTO WEBSENSE, INC. www.websense.com Websense TRITON(tm) For Essential Information Protection(tm) Web Security | Data Security | Email Security Protected by Websense Hosted Email Security -- www.websense.com ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] Run away! Run away!
Experts Warn of New 'Supertrojan' Computer Virus: http://bit.ly/f2uvne http://bit.ly/gZkErv == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org It's something called Critical Path Analysis. It means there's always something you should have done first. For example, if you want to build a house, you need to know how to make bricks, and before you can make bricks you need to know what kind of clay to use. And so on. What's clay? Don't know. What're bricks? Not sure. Well, what's a house? Haven't quite worked it out. - `Truckers,' Terry Pratchett victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] New from O'Reilly
http://www.boingboing.net/2011/02/04/spoof-of-classic-ore.html == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org The desire of knowledge, like the thirst of riches, increases ever with the acquisition of it. - Laurence Sterne victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] NO MORE ZERO DAYS
Date sent: Fri, 04 Feb 2011 20:02:10 +1300 From: Nick FitzGerald n...@virus-l.demon.co.uk is moving it's CPU design to Harvard Architecture That's good. I could go for that. (Developers might be a bit irked ...) == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org It's something called Critical Path Analysis. It means there's always something you should have done first. For example, if you want to build a house, you need to know how to make bricks, and before you can make bricks you need to know what kind of clay to use. And so on. What's clay? Don't know. What're bricks? Not sure. Well, what's a house? Haven't quite worked it out. - `Truckers,' Terry Pratchett victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Run away! Run away!
On Fri, Feb 4, 2011 at 2:08 PM, Rob, grandpa of Ryan, Trevor, Devon Hannah rmsl...@shaw.ca wrote: Experts Warn of New 'Supertrojan' Computer Virus: http://bit.ly/f2uvne http://bit.ly/gZkErv Nothing to see here, move along... :-) - ferg -- Fergie, a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] NO MORE ZERO DAYS
From: Hubbard, Dan dhubb...@websense.com Date sent: Thu, 03 Feb 2011 08:59:28 -0800 Hooray (wink wink nudge nudge say no more say no more) http://www.computerworld.com/s/article/9206366/Intel_developing_security_game_ ch anger_ So, if I've got this straight, once they develop the system/technology, we will instantly know all of the possible ways to attack it? == (quote inserted randomly by Pegasus Mailer) rsl...@vcn.bc.ca sl...@victoria.tc.ca rsl...@computercrime.org The World Youth Congress was the greatest thing that ever happened [to Ghana], so I was surprised to learn [later] that it was a CIA front. I may be the only person you will ever meet who is indebted to the CIA. - Stephen Lewis victoria.tc.ca/techrev/rms.htm http://www.infosecbc.org/links http://blogs.securiteam.com/index.php/archives/author/p1/ http://twitter.com/rslade ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] The Coolest Locksmith Shop in New York City
http://www.scoutingny.com/?p=3534 ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] The Coolest Locksmith Shop in New York City
On Fri, Feb 4, 2011 at 1:51 PM, Shawn Merdinger shawn...@gmail.com wrote: http://www.scoutingny.com/?p=3534 Wow, sweet. ;-) - ferg -- Fergie, a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Run away! Run away!
From: Paul Ferguson fergdawgs...@gmail.com Date: Saturday, February 5, 2011 9:02 am Experts Warn of New 'Supertrojan' Computer Virus: http://bit.ly/f2uvne http://bit.ly/gZkErv Nothing to see here, move along... :-) I suppose I should have been more explicit in the first message, but I did kind of wonder if anyone had the slightest idea what might have sparked this? Particularly from two separate media sources at the same time? ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] best 'danger' sign ever?
http://everythingninja.files.wordpress.com/2010/01/big_4220399.jpg ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] Run away! Run away!
On Sat, Feb 5, 2011 at 10:24 AM, Robert Slade rmsl...@shaw.ca wrote: From: Paul Ferguson fergdawgs...@gmail.com Date: Saturday, February 5, 2011 9:02 am Experts Warn of New 'Supertrojan' Computer Virus: http://bit.ly/f2uvne http://bit.ly/gZkErv Nothing to see here, move along... :-) I suppose I should have been more explicit in the first message, but I did kind of wonder if anyone had the slightest idea what might have sparked this? Particularly from two separate media sources at the same time? I think most of the hype is rooted in the continuing merge of ZeuS and SpyEye: http://krebsonsecurity.com/2011/02/revisiting-the-spyeyezeus-merger/ While it *is* happening, you know how the mainstream trade press likes a good shocking headline. ;-) - ferg -- Fergie, a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Re: [funsec] NO MORE ZERO DAYS
is moving it's CPU design to Harvard Architecture That's good. I could go for that. (Developers might be a bit irked ...) Real Harvard architecture is sufficiently annoying to develop for that I suspect the first thing that would be done with a true Harvard machine would be the creation of some kind of pcode engine that was effectively von Neumann. Indeed, that's approximately how many modern CPUs work - we just call the pcode engine implementation microcode. /~\ The ASCII Mouse \ / Ribbon Campaign X Against HTMLmo...@rodents-montreal.org / \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
[funsec] DHS done with terrorism
Now turning to bigger threat: pirated TV feeds: http://ht.ly/1bck7c ___ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.