Don’t have the superhuman ability to read every tweet we post? No worries; here’s the best of our tweets from the past week in one easy-to-read post.
If you don’t follow us on Twitter, consider stopping by @grecs; we’d love to hear from you!
NoVA Bloggers were awfully quiet this past week; must be that whole Vegas thing we keep hearing about. 
- FREEBSD PF & TFTP-PROXY: Nother interesting post of Bejtlich. http://tinyurl.com/mwdmc4 #novablogger #
- $1 MILLION WHITEHAT BUDGET: As a follow up to last month’s blackhat budget, Bejtlich has posted this. http://tinyurl.com/ku8rf5 #novablogger #
- UN-BOOK REVIEW: Bejtlich discusses 2nd edition of Cisco Routers for the Disparate. He likes. http://tinyurl.com/l5k7os #novablogger #
- VI(1) TIPS BOOK REVIEW: Bejtlich continues reading and reviewing. http://tinyurl.com/mrhrsx #novablogger #
- FIREFOX REMOTE BUFFER OVERFLOW: Dean talks a/b how he came across site exploiting this vuln. http://tinyurl.com/nc424s #novablogger #
- ORACLE BACKUP METASPLOIT SHELL: @carnal0wnage puts out post on doing cmd injection on Oraclel. Nice! http://tinyurl.com/nftam6 #novablogger #
- OWASP APPSEC CON: @rybolov ‘s post on the upcoming conference in Nov. http://bit.ly/JVhD6
#novablogger # - SANS FORENSICS & IR ROUNDUP: Tao Security’s summary of this event. http://bit.ly/aHrMo #novablogger #
- MORE @RYBOLOV LIFTING: Someone did it again-stole his stuff. This time w/ idea of not nuf security folks. http://bit.ly/VERZg #novablogger #
- VEGAS ACTION: @carnal0wnage ‘s initial list of events in Vegas. http://bit.ly/18kWjH #novablogger #
- RT @geminisecurity New blog post: Nessus for vulnerability scanning http://bit.ly/rPHii #novablogger #
One of our favorite NoVA Bloggers Marcus J. Carey is getting a new home this week; be sure to check it out!
- MARCUS MOVING: Came across post tonight on his old blog. Everything moving to http://www.saecur.com. Good luck with the move! #
In case you missed them, here’s the meetups that took place this past week.
- CVS: @rybolov is turning in2 us. Post on free seminar on Communicating Value of Security (CVS). http://tinyurl.com/nhro7n #novablogger #mtg #
- It’s free & local! RT @mubix @catalyst: I’m hosting: Communicating Value of Security Seminar – Preview http://bit.ly/2m6g59 #mtg #
- Reminder: HacDC Microcontroller Mondays Meetup is 2day! http://tiny.cc/FDnFU. C ths nova #mtg & othrs http://bit.ly/nipmtg. #
- Reminder: ISSA – DC Meetup “Avoid Epic Fail” is 2day! http://tiny.cc/GFzPe. C ths nova #mtg & othrs http://bit.ly/nipmtg. #
To make sure that you don’t miss any meetups this week, check out the list below.
- RT @owaspdc Save the Date!! Next OWASP DC Meeting August 5th at George Washington University. Details to follow. #mtg #
- RT @dallendoug DC joins in #NotAtBlackHat movement. Come down to CapSec next week! http://bit.ly/7chGY #mtg #
- JULY CAPSECDC – NOT IN VEGAS VERSION: Think I RT this elsewhere. Here is official blog post. http://tinyurl.com/nkawvh #mtg #
- SEP INCMA #MTG: Still far off but may be worth adding to your calendars. Part of DHS Prep Mo. http://tinyurl.com/mj7bse #mtg #
It seems that we better get used to hearing about Twitter attacks each week.
- MORE TWITTER ATTACK INFO: @jaysonstreet tweeted “Report: Hacker broke into Twitter e-mail with help from Hotmail” http://tr.im/t8ZC #
- RT @avivra Counting 0days. #MoTB 23: TwitterCounter/TwitterRemote Reflected XSS vulnerabilities. http://is.gd/1JbnF #
- RT @avivra #MoTB 25: CSRF+XSS vulnerabilities in TwitStat. http://is.gd/1Msas #
But don’t feel too bad Twitter; you’re not the only one who’s experiencing major vulnerabilities.
- IPHONE ENCRYPTION USELESS: @jaysonstreet RTed this interesting article. http://ow.ly/i2Gi #
- RT @avivra To talk or not to talk.. #MoTB 19: CSRF+XSS vulnerabilities in Talker. http://is.gd/1EqZI #
- RT @avivra Be careful when u install updates on twhirl. #MoTB 20: Insecure communication vuln in twhirl. (0day!) http://is.gd/1FyxT #
- STATE DPMT SAYS RFID PASSPORTS INSECURE: From @jaysonstreet & @idexperts. Shocking! http://short.to/k6bd #
- RT @avivra Ping? Pong! #MoTB 21: Multiple vulnerabilities in Ping.fm. http://is.gd/1GMzb #
- TWO MS EMERGENCY PATCHES: @briankrebs on 2 out if band patches – 1 4 IE and 1 4 Visual Studio. http://tr.im/tVUo #
But don’t let Twitter get you down; Google has some good code for you.
- Too cool! RT @avivra RT @yosit: Apollo 11 Source Code on GoogleCode http://bit.ly/Pehjg #
More Hackers for Charity! This is good stuff people; please get involved if you are willing or able.
- RT @ihackstuff BigFix will match donations 2 HFC, $1 for $1 up to $5k just in time for BH/DEFCON! See link: http://hackersforcharity.org #
If only cloud computing could be as awesome as Hackers for Charity.
- SECURITY PROS & CONS OF CLOUD COMPUTING: @moranned pointed out this nice oped on NYTimes http://bit.ly/uBKWo #
- DEFENDING AGAINST DDOS ATTACKS: Can u say cloud computing? RT from @GovInfoSecurity http://bit.ly/38IvT #
In case you haven’t heard…
- Please RT! OWASP AppSec DC is looking for sponsors. Contact me @grecs if you’re interested. See http://tiny.cc/bB5fX for details. #
Speaking of OWASP AppSec DC, the speakers have been announced!
- RT @dallendoug #AppSecDC is announcing speakers! Follow @AppSecDC09 4 info! Dates are Nov 10-11 for training, Nov 12-13 for talks. #con #
And lastly, what do you think about this?
No related posts.
