If you’re not already following some of our excellent NovaInfosec Twits and are wondering where to get the best NoVA-, DC-, and MD-related security tweets, look no further than this post. Published every Friday, our “Infosec Ramblings” post takes many of my security tweets/RTs from the past week and puts them into one easy to digest post. And if you don’t want to wait an entire week, just stop on by my @grecs Twitter account.
Not many meetups/cons this past week but you can’t beat a free SANS evening and their annual forensics summit.
- #CON OPEN TO ALL – Digital Forensics Awards Night – 7/8/10 http://bit.ly/8Xezfm (via @Shpantzer) [Get chance 2 experience SANS 4 free.] #
- #CON Last minute change #forensicsummit. Mischel Kwon 2 keynote day 2. http://bit.ly/bELuyU (via @Shpantzer @robtlee) #
SANS is on the ball announcing an upcoming conference later this year.
- #CON Once again chairing SANS Virtualization & Cloud Computing Summit http://bit.ly/9NmKss (via @Shpantzer @tliston) #
For those of you that don’t know, we have some pretty awesome infosec bloggers in the local area. You can check out some of their articles below.
- #NOVABLOGGER: Did U Know? US has an Industrial Ctrl Systems (SCADA) CERT.. http://bit.ly/9fU1AW (via @novainfosec) [Interesting.] #
- #NOVABLOGGER Forget Trying 2 Color the Swan, Focus on What You Do Know http://bit.ly/cGB0kw #
- #NOVABLOGGER: Intro 2 RailGun: WIN API for Meterpreter http://bit.ly/aVA701 http://j.mp/nispblog (via @novainfosec) [Nice!] #
In case you missed them, here were some of our blog posts from this week.
- BLOGGED: Grecs’ Weekly Infosec Ramblings for 2010-07-01 http://bit.ly/bllHyh #
- BLOGGED: Top 3 NoVA Infosec Blog Posts of the Week http://bit.ly/asbKgf #
- BLOGGED: Where You Want to Be This Week for 2010-07-05 http://bit.ly/cJijMs #
- BLOGGED: Upcoming Conferences for July, August, September http://bit.ly/aM1prA #
- BLOGGED: Starbucks and Wifi Security Awareness http://bit.ly/ar6Wox #
- BLOGGED: Forget this Network, Pretty Please http://bit.ly/bijcse #
As usual … lots of stuff going on in the government related to infosec…
- Agencies moving slowly to TICs. http://bit.ly/a4iduG #cybersecurity #OMB #DHS (via @werntzp) #
- US DHS shares privacy expertise in new handbook http://bit.ly/9eapkF [interesting read] (via @DrInfoSec) #
- NIST rel Interagency Report 7559 Forensics Web Services http://bit.ly/cHNeLA (PDF) (via @danphilpott) #
- NIST draft SP 800-38A Rec 4 Block Cipher Modes of Op http://bit.ly/daqlB3 (via @danphilpott) [More NIST candy.] #
- Threat of Cyberwar .. Grossly Exaggerated http://bit.ly/bD9f4N (@schneierblog calling it like he sees it.] #
- NIST rel draft of SP 800-125 Guide 2 Security 4 Full Virtualization Technologies http://bit.ly/970Lhx (PDF) (via @danphilpott) #
- OMB M-10-28 Clarifying Cybersec Responsibilities & Activities of EOP/DHS http://bit.ly/bIgDNS (via @danphilpott) #
- DHS Given More Cybersecurity Responsibilities http://bit.ly/b25tSD Will they step up? And who defends .com? (via @taosecurity) #
- Proposed #HHS #rulemaking 4 #HIPAA #HITECH sec, privacy, & enforce rules, 60-day cmt period http://bit.ly/bJcq3a (via @rybolov) #
- NSA Plan 2 Monitor Cyberthreats Draws Cautious Support http://bit.ly/d1eki9 (via @jaysonstreet @AndLax) [Name sounds Orwellian.] #
Some job postings and trends for an infosec career…
- #JOB Stach & Liu has positions open 4 security consultants w/ focus on risk assess/pen testing.. (via @vinnieliu @mschafer
) # - #JOB When 2 Leave a Job http://bit.ly/cymG5M (via @mschafer) [More good career advice from @LJKush & Mike Murray.] #
- #JOB Career Opps on Legal Side of Information Security http://bit.ly/ap55oV [Not interested but m/b @GoldbergLawDC could cmt on. ] #
- #JOB DHS has a cybersecurity job ensuring app security is considered in dev & acquisitions http://bit.ly/dC73kc (via @danphilpott) #
- #JOB My friend at infolock is hiring a senior security consultant. http://bit.ly/9WrgEn (via @pacohope) #
- #JOB Jobs Aplenty 4 IT Security Pro. Infosec is among most difficult positions 2 fill. http://bit.ly/9epGm2 [Yeah!] #
And in closing, you can also keep yourself busy with these interesting newsbites:
- Suspicious login protection extended 2 all Google accts http://bit.ly/9Sk3ea (via @mubix) [Nice, didn't realize was everything.] #
- Youtube Vulnerable to HTML Code Injection http://bit.ly/9o20Ph (via @mubix @TinKode) [Big news for a holiday Sunday.] #
- App Store, Hacked http://bit.ly/b2m62c (via @SecBarbie @jeffisageek) [In other big Sunday news..] #
- Big W Infecting Photo Printing Customers? http://bit.ly/d188rw (via @securityninja @mikkohypponen @drinfosec) #
- Twitter Kit, a Spammer’s Dream Come True http://bit.ly/cHYE07 [And it's only $20!] #
- Credit Card Hackers Visit Hotels All Too Often http://nyti.ms/bq7kfb (via @Nathiet) #
- ‘Robin Sage’ Profile Duped Military Intelligence, IT Security Pros http://bit.ly/cHkc3q [Well that answers that question.] #
- Hi! I’m security researcher & here’s your invoice. http://bit.ly/9rCQsj (via @lcamtuf @mubix) [Interesting read & good cmts.] #
- PCI Security Stds Go 2 3 Year Lifecycle http://bit.ly/9PfMqh (via @mckeay @BrandenWilliams) [Haven't they learned anything from FISMA?] #
Well, that’s all for this week. Be sure to follow me on Twitter at @grecs for more great tweets during the week! See ya…
No related posts.
