If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.
There seemed to be quite a few meetups and conferences this past week. Did you get to attend any of them?
- #MEETUP #25: ~25 folks, epic @shpantzer v. @electricfork cage match, @grantstavely skipping town, CTF qual-chatter, &c. (via @charmsec) #
- #MEETUP RT @capsecdc: CapSec is Next Week! 26-May at Stetson’s, 1610 U St NW! http://bit.ly/9WhjR7 or on Upcoming at http://bit.ly/bdYesS #
- Reminder: SecureAmericas Conference @ Mon May 24 – Tue May 25, 2010 (NovaInfosecPortal.com Calendar) #
- Reminder: ISSA Baltimore Meetup @ Wed May 26 4:30pm – 6:30pm (NovaInfosecPortal.com Calendar) #
- Reminder: CapSecDC Meetup @ Wed May 26 6pm – 9pm (NovaInfosecPortal.com Calendar) #
- #MEETUP CapSecDC, Wed. 26 May 2010, Stetson’s, 1610 U St NW Wash, DC 20009, 5 p.m. – (via @capsecdc @sabletek) [2 more hours!] #
There’s also some upcoming meetups for those of you who are interested.
- CALENDAR UPD: ISSA NoVA Meetup http://bit.ly/cT3R1w http://j.mp/nispcal #
- CALENDAR UPD: ISSA Baltimore Meetup http://bit.ly/c7pNIO http://j.mp/nispcal #
- CALENDAR UPD: Charmsec Meetup http://bit.ly/9OLi5B http://j.mp/nispcal #
If you don’t have time to make it to any of the weekly security meetups, why not try attending one of these upcoming conferences?
- #CON SANS Forensics & IR Summit, Washington, DC July 6-8 http://bit.ly/cohF2r (via @namedeplume @sans_isc) #
- #CON SANS 2010 Digital Forensics Summit – APT Based Forensic Challenge http://bit.ly/cicsiO (via @sans_isc) #
- #CON RT @charmsec: .@stephenNorthcut has invited any1 fr Charmsec out 2 SansFIRE’s Reception on Mon the 7th. .. RSVP is required. DM me #
- #CON NoVA Hackers Metasploit Workshop CFP is open http://bit.ly/9rzDR1 (via @novahackers) #
For those of you that don’t know, we have some pretty awesome infosec bloggers in the local area. You can check out some of their articles below.
- #NOVABLOGGER: Digital Signatures DII Workshop http://bit.ly/a5ePOV http://j.mp/nispblog #
- #NOVABLOGGER: Watch Your WHOIS Entries http://bit.ly/aQWP6N http://j.mp/nispblog #
- #NOVABLOGGER: FACTA Red Flags and Credit http://bit.ly/dfWixH http://j.mp/nispblog #
- #NOVABLOGGER: More on Black Hat Costs http://bit.ly/bNrmFj http://j.mp/nispblog #
- #NOVABLOGGER: Forget Pre-Incident Cost, How Much Did Your Last Incident Cost? http://bit.ly/9jaax2 http://j.mp/nispblog #
- #NOVABLOGGER: On Greed and Complianciness http://bit.ly/9N6CgK http://j.mp/nispblog #
- #NOVABLOGGER: Categories of Security Controls in Outsourcing http://bit.ly/bujSFk http://j.mp/nispblog #
- #NOVABLOGGER: Compliance & Risk Management Are Not the Devil http://bit.ly/c92y6h http://j.mp/nispblog #
- #NOVABLOGGER: Genealogy Research – aka stalking http://bit.ly/d1ciJo http://j.mp/nispblog #
- #NOVABLOGGER: “Machines Don’t Cause Risk, People Do!” http://bit.ly/bqGwFa http://j.mp/nispblog #
- #NOVABLOGGER: Burp 1.3.5 & Android SSL Apps update http://bit.ly/bc0JKj http://j.mp/nispblog #
- #NOVABLOGGER: LOLCATS Building Firewalls http://bit.ly/b0Qgrz http://j.mp/nispblog #
In case you missed them, here were some of our blog posts from this week.
- BLOGGED: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/dyg91J #
- BLOGGED: Where You Want to Be This Week for 2010-05-24 http://bit.ly/dcBdLU #
And here are a few of our friendly reminders…
- NOVAINFOSEC TWITS: Haven’t mentioned in while. Localized vs of @securitytwits. We’d love 2 have u. http://bit.ly/nisptwit #
- ADD YOUR MEETUPS: Want to add your #meet up events to our calendar at http://bit.ly/nispcal? Contact us at http://bit.ly/nispcontact. #
There was so much talk about LIGATT this week, there getting their own section. When is this company and the self-proclaimed “world’s greatest hacker” going to go away?
- Awesome sum of #LIGATT BS .. Fundamentals of Manipulating Perception thru Press Rel http://bit.ly/cjWx3C (via @dallendoug) [Wow.] #
- Hey @LIGATT, nice plagiarism. http://is.gd/cjXIj (via @ksignal9 @attritionorg @dan_crowley) [U gotta b kidding me.] #
- LIGATT Twitter Plagiarism http://bit.ly/9g7TGW (via @quine) [Can this guy at least try. I mean come on. Just paraphrase it a bit.] #
- Infosec TV Commercial: LIGATT Sec hopes 2 scare people.. http://bit.ly/a6lL0e (via @schneierblog) [More LIGATT LOLZ.] #
Not to be outdone by LIGATT, Facebook probably won this week with all the latest privacy brouhaha.
- Zuckerburg’s WP Column http://j.mp/9QwVl3 (via @mckeay) [Article is total BS! We choose 2 share. Right? Your default is 4 us 2 share.] #
- Great @quine line on NetSecPodcast: You are not Facebook’s customer. You’re Facebook’s Product. (via @joshcorman @mckeay) #
- Facebook’s Culture Problem May Be Fatal http://bit.ly/befqLw (via @hackernewsbot @evejou) [Nice write up.] #
- Facebook Forces Users 2 Expose or Remove Connections http://bit.ly/aUYr5n [WTF R they thinking. Really bad timing.] #
- Facebook Unveils New Privacy Controls http://tcrn.ch/csSUIS [We'll see how this plays out. Still missing private defaults.] #
- Facebook Reveals New Privacy Setting Changes http://bit.ly/bm2nfH [Here's @DarkReading 's writeup. Yep, weak defaults.] #
- Security’s Top 4 Social Engineers of All Time http://bit.ly/d01iMd [Nice.
] # - R very own @theharmonyguy was quoted in this SC Mag art a/b FB’s simplified privacy ctrls http://bit.ly/cGiqWF (via @geminisecurity) #
And in closing, you can also keep yourself busy with these interesting newsbites:
- #Blog Twitter Attack http://j.mp/aWcNZ3 (via @FSLabs) [Watch out.] #
- Google SSL beta is live. .. U can now search more securely using http://bit.ly/9dxO3L (via @geekgrrl @evejou) #
- Google Turns on SSL Encryption 4 Search http://bit.ly/9bziDZ [SSL 4 other services too .. didn't see iGoogle mentioned tho.] #
- VA Senator’s Credit Card Used 2 Buy Pot http://bit.ly/cVfwBw (via @DrInfoSec) [Pretty funny.] #
- Is Your Home Printer a Security Risk? http://j.mp/bHjXjF (via @securitywatch @mschafer) [We all too often forget these.] #
- SW Liability Settlement http://bit.ly/c0fHME < vendor liable beyond purchase price 4 unfit SW (via @manicode @rickmoy..) [Wow!] #
- “Top 10 Privacy Tweaks You Should Know About” http://bit.ly/94uiWm (via @jaysonstreet) [Some really nice tips!] #
- Hey kids, go get your shiny new Threatpost iPhone app! http://bit.ly/dxfnvM. (via @mckeay @dennisf) [Nice!] #
- V2 of my History of Web Application Scanning project http://bit.ly/bgpi1r (via @silvexis @mubix) [Great project..] #
- Interesting site of day: W3Domain Tools http://bit.ly/96YbVu Port scan, HTTP Header Retrieval, HTTP “Recon”. (via @mubix) [Nice!] #
- Daily Dashboard 4 Sec & Biz Continuity http://bit.ly/aIevKY [Interesting. Like http://bit.ly/9vkDjL better.] #
- Tabnapping Attack Baits Phishing Trawl http://bit.ly/c2b1TY [I love these names. Look interesting tho.] #
- The Society of Information Risk Analysts – NewSchool Blog http://bit.ly/bZoUbz (via @alexhutton) #
- Fun w/ Printers Part 1 http://bit.ly/97AzjA Part 2 http://bit.ly/drf5zn Part 3 http://bit.ly/cgWhPQ (via @pauldotcom) [Nice!] #
- Online #tool 2 check if URLs R infected http://bit.ly/aQOzBv (via @NickITSec @cedricpernet) [Metascanner using 12 scanners.] #
- Vuln in iPhone Data Encryption http://bit.ly/c9VcQ5 (via @907tothe703) [Wow, didn't know was encrypted by default. Darn, it's broke.] #
- DARPA is building the National Cyber Range for security testing http://bit.ly/aB8uqf (via @danphilpott) [Nice.] #
- RT @zwned: @grecs NCR range for nex gen threats, DISA has a range for current threats and exercises #IARange #
- DoD 2 shift focus to protecting .coms? http://bit.ly/aQjRRw (HT several) (via @dallendoug) [Where 2 draw the boundary tho?] #
Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…
No related posts.
