If you’re not already following the NovaInfosec Twits and are wondering where to get the best tweets about security in the NoVA, DC, and MD area, look no further than this post.

Posted every Friday, our “Infosec Ramblings” post takes the best security tweets from the past week and puts them into one easy to digest post.

If you don’t want to wait an entire week to read the best security tweets, be sure to stop by @grecs or learn more about the NovaInfosec Twits.

There weren’t any meetups this past week but this one did sneak in at the last minute. Plus there were the normal Node meetings. Did you get to attend any?

• Didn’t get pushed out 4 sum reason. Anyway. DC Org of Hackers Infosec Meetup Event – Wed, 11-25: Normal Meeting http://ow.ly/FEBW #
• RT @baltimorenode: Bi-weekly meeting tonight @ 7:30. Votes on 2 new members and some policy changes. Need quorum to approve. #mtg #
• RT @capsecdc Hey kids! There will be NO #CapSecDC on 11/25 due to the holiday. Standby for a rescheduling in the near future. #mtg #

If you don’t have time to make it to any of the weekly security meetups, why not try attending one of these upcoming conferences?

• RT @taosecurity: SANS updated Incident Detection Summit agenda 2 show speakers 4 sessions http://bit.ly/V9RKf #con #
• Several local #con s. RT @danphilpott: MITRE updated events Common Weakness Eval group will participate in.. http://bit.ly/6Ul1aA #
• Good 2 know. RT @ebellis: dark reading & blackhat virtual event on 12/9: http://bit.ly/4P43I3 looks like lot of good speakers. #
• RT @TheCustos: RT @gdead Prelim #shmoocon shwag showing up at the house. Just over 2 months away. oof. #

For those of you that don’t know, we have some pretty awesome infosec bloggers in the local area. Everyone was really on fire this week. I think we’ve set a record on number of posts!

• U can never have enough network tools. RT @geminisecurity New blog post: Netwox-The Network Toolbox http://j.mp/1pJmUL #novablogger #
• RT @TheCustos BLOGGING: IPS Eval starts 2day http://bit.ly/IFQXy <- 1st ‘true’ blog post, please – Feedback! #novablogger #
• TRAFFIC TALK 8: @taosecurity ’s 8th edition was just put out. Enjoy. http://ow.ly/ErRc #novablogger #
• NETWORK SECURITY MONITORING: @taosecurity gave talk last month & Security Justice recorded. In case missed.. http://ow.ly/ErSQ #novablogger #
• RT @marcusjcarey Google Hacking Renders Redaction Futile on the DojoSec Blog http://bit.ly/4pKvc4 #novablogger #
• RT @taosecurity Control “Monitoring” is Not Threat Mon http://bit.ly/8Esjpl NIST’s “cont monitoring” in 800-37 is misguided.. #novablogger #
• Warning: Long Post. RT @falconsview blog post, li’l personal commentary: “Life As a Moving Experience” http://bit.ly/6wsSiw #novablogger #
• RT @taosecurity Rob’s post http://bit.ly/637k0U 2 transform Cisco “debug ip packet” in2 pcap,.. http://bit.ly/07jHNQH #novablogger #
• RT @taosecurity Great class for devs http://bit.ly/4O2V3o In Secure Audit Logging, Gunnar.. http://bit.ly/6NMDtf #novablogger #
• RT @geminisecurity: New blog post: new SSL Vulnerabilities – how they work and what they mean http://bit.ly/08C0RS2 #novablogger #
• Interesting tool. RT @mubix: {blog} SHODAN Computer Search – http://bit.ly/7hToRV – definitely a game changer #novablogger #
• RT @taosecurity: I’m surprised that your kung fu is so expert. http://bit.ly/7sVlrB #novablogger #
• RT @marcusjcarey: Just Blogged: Virtualization is Great for Forensics http://bit.ly/4pNFPH #novablogger #
• RT @carnal0wnage: [Blog Spam] Past, Present, & Future of Security & Sec Community http://bit.ly/5WViXQ #novablogger #
• Nice post. Will it disappear? RT @taosecurity Shodan: Another Step Towards Intrusion as Service http://bit.ly/53TTa9 #novablogger #
• RT @taosecurity: Check out my rev of Libicki’s Cyberdeter & Cyberwar http://bit.ly/7h7BxM He’s wrong; more offense is answer. #novablogger #
• RT @jack_mannino What I’m asking Santa for this year in the security industry…http://bit.ly/8jbYp5 #novablogger #
• RT @marcusjcarey Just Blogged: Marcus’ Mailbag: Policy, Enforcement, and Monitoring http://bit.ly/91l0eb #novablogger #
• TORT LAW & SHODAN: @taosecurity uses some case law to prove his point. http://ow.ly/G1fu #novablogger #
• IS PHOENIX REALLY THAT BAD? Anyway @falconsview gives a list of reason why they never arrived. http://ow.ly/G1ii #novablogger #

In case you missed them, here were some of our blog posts from this week.

• BLOGGED: Grecs’ Weekly Infosec Ramblings for 2009-11-19 http://ow.ly/163bKI #
• BLOGGED: Where You Want to Be This Week (11-23) http://ow.ly/163W7C #

As usual NIST has been busy in the infosec world … including adding a Twitter account.

• RT @GovInfoSecurity: Ron Ross, NIST’s Infosec Guru, on NIST’s Latest Transformational Info Security Guidance. http://bit.ly/hETIE #
• RT @danphilpott NIST SP 800-37 Rev 1 draft discusses handling of cloud computing, 2.3.3 Dynamic Subsystems: http://bit.ly/8ZGSyh (PDF) #
• RT @danphilpott NIST released ITL Security Bulletin 2009-11 Cybersecurity Fundamentals for Small Business Owners http://bit.ly/8j4a3L #
• They need a nistsec account. RT @danphilpott RT @usnistgov: NIST is now on Twitter. Follow us @usnistgov http://bit.ly/08naeEb #
• RT @danphilpott: NIST release draft IR-7657 Privilege Management http://bit.ly/6OwgNy #

You can also keep yourself busy with these interesting newsbites:

• Nice article and good career advice. RT @GovInfoSecurity 7 Do’s and Don’ts of Social Networking. http://bit.ly/90Zvl5 #
• RT @DarkReading Gadi Evron scrutinizes WH cybersec review report: http://j.mp/89D3B4 #
• RT @DarkReading 3 factors to assess for DIY penetration testing: http://j.mp/6troPV #
• 12 SCAMS OF CHRISTMAS: Can’t believe this stuff is already coming out. McAfee puts out some advice. http://ow.ly/Es3b #
• NEWSBITES: Some Sunday morning reading.. http://ow.ly/Esgs #
• MORE MALICIOUS AV – AS SEEN ON TV: Wow, looks like they’re even running TV commercials. Actually malware though. http://ow.ly/ECf3 #
• Here we go again. RT @regsecurity iPhone worm highjacks ING customers http://bit.ly/078t71K #
• Can you say 0-day? RT @briankrebs New attack targets weakness in Internet Explorer http://bit.ly/8dQ5js #
• RT @sans_isc [Diary] New Nmap Beta Released, (Mon, Nov 23rd): Earlier today, Fyodor announced the.. http://bit.ly/4tiV6p #
• It’s out of the bottle – too late. RT @regsecurity: MS unleashes legal attack dogs to lick up COFEE spill http://bit.ly/5aAVNC #
• RT @carnal0wnage RT @frednecksec: Blogged: Where is the Controversy about Shodan? http://bit.ly/7S2BBO #
• Starts off basic but then disc some cool tools. RT @jaysonstreet “4 Cheap Options 2 Monitor Networks 4 Evidence” http://is.gd/53m4T #
• RT @pacohope “The Rational Rejection of Sec Advice by Users” Does sec advice cost user more than incident itself? http://bit.ly/4A4GYT #
• Yeah, what ever happened? RT @ThisIsHNN: RT @threatpost Don’t Call it a Comeback: L0phtcrack Returns | http://bit.ly/8HidQA #
• Another #2010predictions RT @DrInfoSec: IT Security Predictions for 2010 by IBM & Sophos http://bit.ly/8IWuTO [soc. eng. is #2] #
• Good read. RT @mubix RT @ThePraetorian: You’ve been SHODAN’d: http://bit.ly/8V3BZV #

As a reminder …

• Created some lists under @novainfosec blog account. Populated with some of initial accts from http://ow.ly/DT3v. Lists include organizations #
• , blogs, companies, events, and people. Similar to @securitytwits but focused on NoVA, DC, and MD. #
• Let me know if you’d like to be added to any of them. #

And of course it was Thanksgiving this past week.

• Well we should all be sleeping by now. Hope everyone had a nice Thanksgiving and a relaxed long weekend. #
• But NovaBloggers have been very active coming up to Thanksgiving holiday. Search on #novablogger for tweets by me. Here are 2 more. #

Well, that’s all for this week. Be sure to follow us @grecs for more great tweets during the week!

Tags: digest, grecs, twitter

This entry was posted on November 27, 2009 at 1:00 pm and is filed under NoVA Email Lists/Networking. You can follow any responses to this entry through the RSS 2.0 feed.