Grecs’ Weekly Infosec Ramblings for 2010-05-06

If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.

• #NOVABLOGGER: Grecs’ Weekly Infosec Ramblings for 2010-04-29 http://bit.ly/besA60 http://j.mp/nispblog #
• BLOGGED: Grecs’ Weekly Infosec Ramblings for 2010-04-29 http://bit.ly/besA60 #
• BLOGGED: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/cPM0T0 #
• #NOVABLOGGER: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/cPM0T0 http://j.mp/nispblog #
• Fun with Secret Questions http://bit.ly/bjZjB4 (via @schneierblog) [Funny.] #
• India Bans Chinese Telecom Equipment http://bit.ly/by9daL (via @DrInfoSec) [Interesting. Wonder if we could do that?] #
• NIST rel SP 800-22 Rev 1a Stat Test Suite 4 Random & Pseudorandom Num Gen http://bit.ly/aQlrwp (via @danphilpott) [I'm feeling sleepy. ] #
• IN CASE U MISSED IT: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/cIQW5H #
• IN CASE U MISSED IT: Grecs’ Weekly Infosec Ramblings for 2010-04-29 http://bit.ly/aZEvz5 #
• IT Consultant Gets 5 Years 4 Plundering $2m http://bit.ly/b2Qeaz [Insider threat..] #
• NIST to Coordinate National Cybersecurity Education Program http://bit.ly/aL1F9E (via @danphilpott) [NICE! Really. ] #
• Agencies Under Pressure 2 Dev Systems 1st, Security 2nd http://bit.ly/aPgqBv (via @Nathiet) [Not just gov .. commercial too.] #
• #CON CFP 4 WOOT 10 is open: http://j.mp/a5PKCA (via @mdowd @dionthegod) #
• #CON Come interact with thought leaders in the cyber conflict community 13 May in Columbia MD: http://j.mp/cgcKQc (via @bobgourley) #
• NIST 2 Coord Fed Cybersec Education Initiative. Program Aimed at Security Awareness, Education, Jobs. http://j.mp/aV747W #
• Post-privacy society’s biz model “unfettered data collection of all yr activities online/off” http://j.mp/ayQfxs (via @DrInfoSec) [Scary.] #
• Month of PHP Security 2010 has officially started http://j.mp/aaBgNy (via @security4all @mubix) #
• #CON CFP 4 WOOT 10 Is Open http://j.mp/a5PKCA (via @hdmoore @mdowd @mubix) #
• Free AT&T Hotspots Pose Security Risk 2 iPhone Users http://j.mp/b1GlOU // NS bit set on this one.. (via @FSecure @mubix) #
• RT @moranned RT @jaymztay: Straw finally broke camel’s back Deleted my Fbook acct. I hope U do same. There R better ways 2 social network. #
• Facebook Privacy & Security Guide Updated to v2.1 http://j.mp/dpRM5L (via @SocialMediaSec @agent0x0 @cktricky) [Nice reference!] #
• That got me thinking. Wonder if DISA is putting together a Facebook STIG? #
• ISS X-Force: What’s Inside of a PDF Attack http://j.mp/bMPmxl (via @IBMFedCyber) [Nice writeup.] #
• Simple Protection 4 Your USB Flash Drives http://bit.ly/bCaR9h [Flip write-protect switch. But can you find 1 to buy?] #
• Hacked US Treasury Websites Serve Visitors Malware http://bit.ly/9xMcEW #
• #CON AFCEA Solutions: Critical Issues in C4I, cosponsored by George Mason U. May 18-19. Sched updates.. http://bit.ly/cb2UUd #
• Hackers Release Jailbreak 4 iPad & Newer iPhones http://bit.ly/bp7p4w [In case you missed.] #
• Word OTD: #Zuckerpunched – being tricked in2 oversharing on FB w/ confusing opt-out procs http://bit.ly/cfsZIT (via @atdre @alexhutton) #
• #EDU UMUC Launches Cybersecurity Degree Program http://bit.ly/a5ybkr (via @IBMFedCyber) #
• XSS Vulns Happen 2 Everybody http://bit.ly/991v2D [Kinda funny. A challenge site has a XSS flaw. ] #
• CALENDAR UPD: ISSA Baltimore Meetup http://bit.ly/9uTLV0 http://j.mp/nispcal #
• #NOVABLOGGER: More with Metasploit and WebDAV http://bit.ly/bk9M6c http://j.mp/nispblog #
• #NOVABLOGGER: More with Metasploit and WebDAV http://bit.ly/cq61Vk http://j.mp/nispblog #
• NOVAINFOSEC TWITS: Friendly reminder.. NovaInfosec Twits list is opt-in. Find list & instructs 2 join at http://bit.ly/nisptwit. #
• #NOVABLOGGER: Back to Basics: No Tech Hacking at 30,000 feet http://bit.ly/crLNCj http://j.mp/nispblog #
• #NOVABLOGGER: This Week in Gov’t Computing http://bit.ly/cpKC81 http://j.mp/nispblog #
• CALENDAR UPD: WOOT Conference http://bit.ly/9Bpm5O http://j.mp/nispcal #
• EFF Fights FB Bid 2 Outlaw 1-Stop Social Apps http://bit.ly/azfpvM (via @kakroo @907tothe703) [Can U say Evil?] #
• OMB released M-10-17 Holding Recipients Accountable for Reporting Compliance under the ARRA http://bit.ly/dmpgtP (via @danphilpott) #
• Building an iPhone app? Thought about security? List of Top 5 gotchas: http://bit.ly/af5TDa (via @IntrepidusGroup @Shpantzer) #
• Sophos Sells Majority Stake to Private Equity Group http://bit.ly/dfiQ1P #
• Google tutorial lets developers play malicious hackerhttp://bit.ly/9lviJJ [Interesting.] #
• #NOVABLOGGER: Metasploit Lotus Domino Version Scanner http://bit.ly/9LhFfK http://j.mp/nispblog #
• #NOVABLOGGER: Metasploit Lotus Domino Version Scanner http://bit.ly/cSeq0S http://j.mp/nispblog #
• #NOVABLOGGER: Layer Four Traceroute http://bit.ly/baIunX http://j.mp/nispblog #
• ADD YOUR CONS: Want to add your #con events to our calendar at http://bit.ly/nispcal? Contact us at http://bit.ly/nispcontact. #
• BLOGGED: Where You Want to Be This Week for 2010-05-03 http://bit.ly/9i4qI0 #
• Hacker Devs Multi-Platform Rootkit 4 ATMs http://bit.ly/9s4E7w (via @kakroo @jabolins) [Think he'll get stopped again?] #
• Google Enters Vulnerable Web App List http://bit.ly/cf1l1H (via @ap3r @jaysonstreet) [Could b new addition to BWAs.] #
• FISMA Reform Bill Clears House Panel http://bit.ly/ajXmqO [Interesting.] #
• Facebook Bug Allowed Users 2 Eavesdrop on Chats http://bit.ly/cQTcT4 [In case you missed this 2day.] #
• New, Free (Open Source) DLP Tool http://bit.ly/cLuZFq [Interesting.] #
• New, free (open source) DLP tool http://bit.ly/cLuZFq [Interesting.] #
• Reminder: Cybersecurity & Homeland Defense Symposium @ Fri May 7 8am – 1pm (NovaInfosecPortal.com Calendar) #
• HELP US HELP U: Friendly reminder.. Support NovaInfosecPortal by purchasing thru 1 of our affiliates. More info at http://bit.ly/nisphelp. #
• IN CASE U MISSED IT: Where You Want to Be This Week for 2010-05-03 http://bit.ly/de8YE5 #
• Reminder: 2600 Baltimore Meetup @ Fri May 7 6pm – 9pm (NovaInfosecPortal.com Calendar) #
• Reminder: 2600 Arlington Meetup @ Fri May 7 7pm – 10pm (NovaInfosecPortal.com Calendar) #
• “Boot From a USB Drive Even if your BIOS Won’t Let You” http://bit.ly/c7JlGa (via @jaysonstreet) [This could b useful.] #
• SP 800-53A Rev 1 – Draft dropped. Let charlatans begin their craptastic assessments. http://bit.ly/90gPFS (via @cyberhiker) #

Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…

No related posts.

Tags: digest, grecs, twitter