Grecs’ Weekly Infosec Ramblings for 2010-02-25

If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.

There seemed to be quite a few meetups this past week. Did you get to attend any of them?

• CALENDAR UPD: NoVA Hackers Association Meetup http://bit.ly/bKu6VT http://j.mp/nispcal #
• CALENDAR UPD: Charmsec Meetup http://bit.ly/bOXhZx http://j.mp/nispcal #
• RT @sintixerr: I’m giving a 5min talk @hacdc Tue at 7:30 on Mind-reading art proj been working on. Come c me & 11 others! #meet #
• Reminder: ISACA NCA Meetup @ Tue Feb 23 8am – 5:30pm (NovaInfosecPortal.com Calendar) #
• RT @capsecdc #CapSec DC Feb is THIS Wed, 24th, starting a/f work at Stetson’s, 1610 U St NW. http://bit.ly/cEbauq #meet #
• CALENDAR UPD: CapSecDC Meetup http://bit.ly/dfchl1 http://j.mp/nispcal #
• Reminder: ISSA Baltimore Meetup @ Wed Feb 24 4:30pm – 6:30pm (NovaInfosecPortal.com Calendar) #
• Reminder: CapSecDC Meetup @ Wed Feb 24 6pm – 9pm (NovaInfosecPortal.com Calendar) #
• RT @sintixerr is heading to HacDC for the lightning talks. See some of you there #meet #
• Reminder: NoVA Hackers Association Meetup @ Thu Feb 25 11:30am – 1pm (NovaInfosecPortal.com Calendar) #
• RT bvPredator Sooo, @capsecdc is gonna be the happenin’ place to be tonight…See you there! #meet #
• Reminder: Charmsec Meetup @ Thu Feb 25 7pm – 10pm (NovaInfosecPortal.com Calendar) #
• RT @dionthegod Don’t miss all new @charmsec 2night at 7ish on Slainte. Come & discuss w/me finer points of vuln dev & bottle-rockets. #

Of course there were a few conferences this past week.

• There’s even a cybersec track. RT @signalmag: Coming to AFCEA’s Homeland Security #con next week? http://bit.ly/b9xZyq #
• RT @signalmag Via SIGNAL Scape: The 7-Year Itch: No, I’m not talking a/b classic Marilyn Monroe film.. http://bit.ly/bwyyZD #con #
• Reminder: AFCEA Homeland Security Conference @ Wed Feb 24 – Thu Feb 25, 2010 (NovaInfosecPortal.com Calendar) #
• CALENDAR UPD: Security Automation Developer Days http://bit.ly/d07qeN http://j.mp/nispcal #

There’s also some upcoming meetups for those of you who are interested.

• CALENDAR UPD: DojoSec Meetup http://bit.ly/bpX6hA http://j.mp/nispcal #
• CALENDAR UPD: NoVA Hackers Association Meetup http://bit.ly/c0oAL9 http://j.mp/nispcal #
• CALENDAR UPD: ISSA NoVA Meetup http://bit.ly/cd36cm http://j.mp/nispcal #
• RT @baltimorenode: Tomorrow is last day 2 get tics 2 learn to solder: arduino intro class. http://bit.ly/bZv69d #meet #
• RT @baltimorenode: Today is last day to get tickets to learn to solder: arduino intro class. http://bit.ly/bZv69d #meet #
• RT @mpbailey1911 @theqlabs: Please RT: @HacDC Presents Hardware Hacking Course 0: http://bit.ly/by7R5b by yours truly #meet #
• CALENDAR UPD: DojoSec Meetup http://bit.ly/9Nm0zJ http://j.mp/nispcal #
• RT @baltimorenode Arduino: Learn to Solder workshop postponed til March 6th. Tickets still on sale til tomorrow! http://bit.ly/bZv69d #

If you don’t have time to make it to any of the weekly security meetups, why not try attending one of these upcoming conferences?

• RT @danphilpott NIST posted info 4 9th Symposium on Identity & Trust on Internet,IDtrust 2010, April 13-15 http://j.mp/aVHRG9 #con #
• RT @pauldotcom @edskoudis: 2010 PenTest & Vuln Assess Summit details posted. 6/14-15, Baltimore.. http://bit.ly/aDsOjD #con #
• CALENDAR UPD: Security in the Clouds http://bit.ly/9OFM77 http://j.mp/nispcal #
• CALENDAR UPD: Software Assurance Working Group Sessions http://bit.ly/dnUsop http://j.mp/nispcal #

Shmoocon follow-ups are still trickling in…

• RT @mubix: RT @psifertex: Ghost In The Shellcode CTF contest #Shmoocon results/challenges finally posted: http://bit.ly/dvQe4B #
• Quick updates 2 training page w/ hackable OSs/webapps learned at Shmoocon. http://bit.ly/nispedu Skip down 2 Othr Sec Training. #
• Last call 4 #Shmoocon #firetalks preso links. I’m going 2 b putting out final post this week & am in need of 6 preso links. #
• RT @mubix @psifertex: Final GitS CTF scores and board up. New answers & writeups can win ret2libc stickers! http://bit.ly/dvQe4B #

For those of you that don’t know, we have some pretty awesome infosec bloggers in the local area. You can check out some of their articles below.

• #NOVABLOGGER: A Sense of Self-Preservation http://bit.ly/cBBifT http://j.mp/nispblog #
• #NOVABLOGGER: My Kind of Privacy Policy http://bit.ly/cbrvvf http://j.mp/nispblog #
• #NOVABLOGGER: School Spies Students Through Their Laptop Cameras http://bit.ly/dluTvW http://j.mp/nispblog #
• #NOVABLOGGER: Advice for Academic Researchers http://bit.ly/bRze5b http://j.mp/nispblog #
• #NOVABLOGGER: Offshoring Incident Response http://bit.ly/9I9ukg http://j.mp/nispblog #
• #NOVABLOGGER: Review of Intelligence, 4th Ed Posted http://bit.ly/daSbYM http://j.mp/nispblog #
• #NOVABLOGGER: Pkviz Packet Visualization Animator Source Code Available http://bit.ly/cDDTvE http://j.mp/nispblog #
• #NOVABLOGGER: Doing a Lightning Talk at HacDC Fed 23,2010 on BrainQuartz http://bit.ly/aa5E9o http://j.mp/nispblog #
• #NOVABLOGGER: Reaction to Cyber Shockwave http://bit.ly/9gKwIH http://j.mp/nispblog #
• #NOVABLOGGER: Batman FTW http://bit.ly/cB8WYp http://j.mp/nispblog #
• #NOVABLOGGER: Micro-Generation Closer to Reality http://bit.ly/bGnjTq http://j.mp/nispblog #
• #NOVABLOGGER: The New 800-37 http://bit.ly/a5MsBy http://j.mp/nispblog #
• #NOVABLOGGER: Obscurity Still Isn’t Security http://bit.ly/aZnYMq http://j.mp/nispblog #
• #NOVABLOGGER: Practical Exploitation http://bit.ly/crJzzU http://j.mp/nispblog #
• #NOVABLOGGER: Block all Drive-By Download Exploits http://bit.ly/bqvUe1 http://j.mp/nispblog #
• #NOVABLOGGER: Return of the MAC http://bit.ly/awLrOz http://j.mp/nispblog #
• #NOVABLOGGER: Props on the Blog Spam http://bit.ly/9CmSvj http://j.mp/nispblog #
• #NOVABLOGGER: RSA 2010 Is Nearly Here http://bit.ly/co4rlA http://j.mp/nispblog #
• #NOVABLOGGER: VMWare Directory Traversal Metasploit Module http://bit.ly/cK2qcQ http://j.mp/nispblog #
• #NOVABLOGGER: The Need for Consumer-Oriented Intervention http://bit.ly/coPQFh http://j.mp/nispblog #
• #NOVABLOGGER: Urban Legend: “HTML 5 Will Kill Flash” http://bit.ly/cD10bX http://j.mp/nispblog #
• #NOVABLOGGER: Software, All the Way Down http://bit.ly/djpODV http://j.mp/nispblog #

In case you missed them, here were some of our blog posts from this week.

• BLOGGED: Grecs’ Weekly Infosec Ramblings for 2010-02-18 http://bit.ly/aP3vXz #
• BLOGGED: Where You Want to Be This Week for 2010-02-22 http://bit.ly/cmFQQi #
• BLOGGED: Upcoming Conferences for February, March, April http://bit.ly/aBLpEP #
• BLOGGED: GovSec Infosec Conference Event http://tinyurl.com/yamqsxu #
• BLOGGED: Call for Intern Position http://bit.ly/aFtJ1w #
• BLOGGED: ShmooCon 2010 Firetalks – Update 5 (aka – the Wrap-Up) http://bit.ly/aOxjkD #

NIST let the flood gates go this week it seemed… Dan’s on top of things as usual.

• RT @danphilpott NIST released SP 800-37 Rev1 Guide 4 Applying Risk Mgmt Framework 2 Fed Info Systems #FISMA http://bit.ly/c64I9i #
• RT @danphilpott Now SP 800-37 Rev1 is published C&A is on death watch, in 1 yr Risk Mgmt Framework becomes standard FISMA process. #
• At least thinking a/b sec b/f deploy. RT @danphilpott NIST rel draft 800-119 Guidelines 4 Secure Deploy of IPv6 http://bit.ly/9NxMqM #
• RT @danphilpott NIST released SP 800-73-3 Interfaces for Personal Identity Verification today: http://bit.ly/a3aLXS #
• RT @danphilpott NIST released SP 800-78-2 Cryptographic Algorithms & Key Sizes for Personal Ident. Verification http://bit.ly/aVHUEm #
• RT @danphilpott Released SP 800-73-3 Release 2 Interfaces for Personal Identity Verification: http://bit.ly/9z77Ku (correction) #
• RT @danphilpott NIST released Jan 2010 ITL, Security Metrics: Measurements 2 Support Cont Dev of InfoSec Tech: http://bit.ly/c9OvTF #

You can also keep yourself busy with these interesting newsbites:

• Nice short post on how to obfuscate JS from AV. “Circumventing Antivirus Javascript Detection” http://bit.ly/bZYDRi #
• And this continues. RT @IBMFedCyber: Cyber Shockwave Post Mortem: http://bit.ly/9LmaC7 – “it was chaos from start to finish.” #
• If you haven’t seen it, good article by @briankrebs .. “A Virus Known as Botnet” http://bit.ly/dBlpWy #
• Ok, annoootteeerr report – http://bit.ly/9LtQ0t. Yes, we have a problem. Let’s STOP writing reports & START solving the problem! #
• RT @IBMFedCyber: DoD gives thumbs up to thumb drives again! http://bit.ly/934LpQ #
• Backup your cloud presence! RT @moranned: Backing up my tweets with http://backupify.com – Twitter backup is free! #
• Nother report (Grey Goose) a/b power grid attacks due to smart grid pilots. I’ll make exception 4 this 1. http://bit.ly/bHxbNx #
• Protecting your endpoints fr becoming bots. I think doing outbound net monitoring will help most. http://bit.ly/9iEIl2 #
• Regarding http://bit.ly/9iEIl2 .. It references 4 more reports! #
• Will hve 2 try out. RT @ksignal9 Speaking of memory footprint and responsiveness of Firefox: http://j.mp/90S67T #
• RT @taosecurity Check out latest Honeynet Project forensic challenge if U want 2 b noticed by those hiring http://j.mp/dfaBAo #edu #
• RT @mckeay “Don’t spy on my children!” http://j.mp/9tYOHq My take on the LMSD situation, with the correct link #
• RT @taosecurity 2 hour Cyber Shockwave story on CNN tonight 8pm EST http://j.mp/9XVegZ I don’t have high expectations for this 1.. #
• Nice iview w/ family where whole thing started. RT @mckeay @jack_daniel 6ABC iview w/ School Spy case family: http://j.mp/99gGec #
• Funny. RT @falconsview: hilarious… NSFW… Comedy.com take on Google Buzz issues… http://bit.ly/b51AHq #
• Very detailed article on doing Twitter recon using Maltego – especially if your in to skateboarding. http://bit.ly/9FrJyV #
• RT @dallendoug @mikkohypponen Watch out 4 tweets fr ur followers 2 lmageshaack dot com (starts w/ “L”, not “I”). #malware #
• Plus another 1 that you get through DM. http://bit.ly/afbs5F. #
• Good 3 minute watch. RT @cyberwar: Probably the best taste of what CNN will be airing tonight. http://bit.ly/8Zbwt9 #
• RT @sintixerr: http://bit.ly/93mzGu Me on local news few yrs ago talking a/b worm. Was mostly ad-lib. Had only been briefed 10min prior. #
• You’ve prob already saw this but .. follow-up 2 PleaseRobMe. http://bit.ly/bHKo4B More things change .. more they stay the same. #
• More a/b Twitter phishing attack fr this weekend. http://j.mp/bu8nuF #
• RT @DrInfoSec Dozens of US defense contractors/agencies hacked http://bit.ly/9pqcXe [got "admin-level access" to net in 102/116 cases] #
• Nice. RT @jaysonstreet LOL RT @bbaskin: Would love 2 find vid of CNN #Shockwave, but top search results R malware. #
• Latest Newbites. They call BS on #cybershockwave. http://bit.ly/atr8rt #
• Nice post on the whole high school spying thing. http://bit.ly/bRRwsL #
• U’ve all prob seen this Devil Mountain thing. RT @jsutera654 @ryanaraine: wow. just wow. http://bit.ly/9acdUh #
• If U R gonna play with fire.. RT @DrInfoSec FTC warns of sensitive data found on P2P networks http://bit.ly/bXTgYf #
• Interesting. RT @briankrebs Technology Review carries my story on new tool 2 block drive-by downloads. http://bit.ly/9k5Q9m #
• CC info over email? WTF! RT @mckeay @st0rmz: How does consumer report merchant 4 non PCI compliance? http://bit.ly/beCrD7 #
• Wouldn’t call “tech experts”; more like “tech journalists”. RT @mschafer Awesome list! 100 Tech Experts on Twitter: http://bit.ly/bZJMX4 #
• Oh, oh.. Is there iPhone app 4 it? RT @ebellis @itsecuritynz: Security Scoreboard – Yelp 4 Security Pros – http://bit.ly/9m7qRr #
• Looks like some interesting things to learn. RT @mubix @practicalexplt official launch tomorrow on http://bit.ly/8Ygtls #
• Right-click to send any file to VirusTotal. http://bit.ly/anctXP #
• FYI – Attackers going a/f end-users rather than servers. [this is so early 2000s & now we have report 2 prove] http://bit.ly/9PBnGH #
• Interesting. RT @VRT_Sourcefire @cesarcer Elvis Presley passport exposes security flaw http://bit.ly/aPNEv0 #
• 3 strikes & banned from web for life. RT@ jaysonstreet “Global treaty may make your ISP spy on you” http://bit.ly/cK7l1f #
• Ah, career advice. RT @DrInfoSec Transitioning fr tech position to mgmt role (by @myinfosecjob) http://bit.ly/bZ5miJ [good read] #
• In case U missed .. RT @regsecurity Payment card skimmer secretly planted in gas station pump http://bit.ly/bPKcwL #
• They’re coming .. mobile phone attacks. Here’s one on rootkits & smartphones. http://bit.ly/aSvkay #
• Nice wrap-up of #cybershockwave by the @VRT_Sourcefire guys. http://bit.ly/azQ7f0 #
• Whoa. RT @jaysonstreet: This will end well “Phone App Lets You Identify Strangers” http://bit.ly/8XeW2c #
• RT @jaysonstreet @dave_rel1k: SET 0.4.1 rel “Rise of Pink Pirate”, release notes at http://bit.ly/cITbB8 better A/V bypass, new features #
• Interesting fact. RT @gdead Wow. There’s more contractors at DHS than employees. http://j.mp/a4H4jn #
• It’s finally happening a/f all yrs of predictions. RT @regsecurity Hordes of new threats ahead 4 mobile networks http://j.mp/a3NnbR #
• WTF! RT @mubix @sucuri_security: GoDaddy stores your passwords in clear & may try 2 SSH 2 your VPS w/o perms http://bit.ly/bW1hQw #
• RT @SCMagazine Vote 4 your favorite blogger/tweeter 4 SC Award. Polls close Fri 11am EST. http://www.scmagazineus.com #
• Nice! RT @jaysonstreet @lbhuston: http://bit.ly/9mA5xD #tool Damn Vulnerable Web App now a live cd. Nice for lab work. #
• Nice art w/ panel commentary. RT @CSOonline BillBrenner70 Security B-Sides: Rise of the ‘Anti-conference’ http://bit.ly/ayFYMn #
• What might have been? Awesome predications re atstake purchase, smashing stack & trust computing memo. http://bit.ly/c0tSno #
• WTF .. “Twitter hit with second phishing attack this week” http://bit.ly/bvgKoR #
• “Windows 7 tool can turn laptop in2 rogue Wi-Fi access point 4 hackers” Need 2 turn off SoftAP. http://bit.ly/dx8jgx #
• RT @cyberwar CNN Cyber Shockwave posted to YouTube. http://bit.ly/aqTvOs #
• RT @evejou @GoDaddy: The author posted update 2 his blog. It clarifies a lot. We hope you’ll read that too. http://bit.ly/cKi8Rh #
• DNSCurve? Interesting, hadn’t heard of it. RT @DarkReading Comcast goes with DNSSEC, OpenDNS doesn’t: http://bit.ly/cVr2F1 #
• Podcast w/ Dr. Ron. RT @GovInfoSecurity NIST Infosec Guru Ron Ross on NIST’s Revolutionary IT Security Guidance. http://bit.ly/ciGXTm #
• Nice write-upp on the evolving #con/education atmosphere from @mschafer. http://bit.ly/bRYiQn #
• Now that’s security awareness training. RT @DrInfoSec Anatomy of an SQL Injection Attack (feat. @RafalLos) http://bit.ly/cpTjZs #
• Nice graphic. RT @DrInfoSec How a botnet works (JPG from MS blog) http://bit.ly/dln0eu [good 4 security awareness & education] #
• Interesting. RT @DrInfoSec @privacybytes: I know what porn you surf: Analytics gets creepy http://bit.ly/bOD49v [devious] #
• Yoggie. Interesting concept. Firewall & bunch of security s/w on PCMCIA card. Too bad so many horrible reviews. http://bit.ly/doZGd5 #
• RT @mubix @achillean #shodan site & index updated: including new domain, help/ faq section and blog – http://www.shodanhq.com #
• #job posting. RT @DuvalSearch New From DSA: Searching 4 Senior IT Auditor in DC Metro Area. http://bit.ly/9cBWam #ITAudit #DC #VA #

And in closing, who could forget the tweet of the week?

• Lol. RT @sintixerr: Dont remember if I sent this out, but this is not-so-well-hidden door at National Archives: http://tinyurl.com/y89yp8y #

Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…

No related posts.

Tags: digest, grecs, twitter